General
-
Target
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff
-
Size
60KB
-
Sample
240611-ag6l3awhml
-
MD5
cd841a408dbd4a29b5f18e2d652a3289
-
SHA1
f4e4915d32258cacd8191e51da034ecb62d8f147
-
SHA256
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff
-
SHA512
90e8214be093ca1e474fc0b8f39e932717f1be7ed943aeed7b6e83652f5c93677c3fdf13864eee9a19a3ca5632ad3a9abdb711ce9204af43ec428d69d87ea664
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8t:KQSohsUsxe+erZs1o8k1o8t
Behavioral task
behavioral1
Sample
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff
-
Size
60KB
-
MD5
cd841a408dbd4a29b5f18e2d652a3289
-
SHA1
f4e4915d32258cacd8191e51da034ecb62d8f147
-
SHA256
85ec33e6fe4bccbc1ed340f84ec7e63f84b90dfabde83ba8f47a1ec6428b92ff
-
SHA512
90e8214be093ca1e474fc0b8f39e932717f1be7ed943aeed7b6e83652f5c93677c3fdf13864eee9a19a3ca5632ad3a9abdb711ce9204af43ec428d69d87ea664
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97ns1o8k1o8t:KQSohsUsxe+erZs1o8k1o8t
Score9/10-
Renames multiple (3782) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-