General
-
Target
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9
-
Size
259KB
-
Sample
240611-ast3eawgrc
-
MD5
c42521bcb6599ccb6d73f592e4ba6b73
-
SHA1
4f8e686d03c0e5af46cbf382a186ccf0f606a100
-
SHA256
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9
-
SHA512
e7c3d00bbe77ef52888e0377818d7d5c4e3c315b94930f3e141a47e81519c3e57028c73cf7170bd67f80354796e32af4b64eec371ad4c0ebac40ee2c705ea9a4
-
SSDEEP
3072:fnymCAIuZAIuYSMjoqtMHfhflixizfAIuZAIuYSMjoqtMHfhflixiL:KmCAIuZAIuDMVtM/xfAIuZAIuDMVtM/V
Behavioral task
behavioral1
Sample
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9
-
Size
259KB
-
MD5
c42521bcb6599ccb6d73f592e4ba6b73
-
SHA1
4f8e686d03c0e5af46cbf382a186ccf0f606a100
-
SHA256
8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9
-
SHA512
e7c3d00bbe77ef52888e0377818d7d5c4e3c315b94930f3e141a47e81519c3e57028c73cf7170bd67f80354796e32af4b64eec371ad4c0ebac40ee2c705ea9a4
-
SSDEEP
3072:fnymCAIuZAIuYSMjoqtMHfhflixizfAIuZAIuYSMjoqtMHfhflixiL:KmCAIuZAIuDMVtM/xfAIuZAIuDMVtM/V
Score9/10-
Renames multiple (2845) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-