General
-
Target
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6
-
Size
3.9MB
-
Sample
240611-ayhlkaxaqd
-
MD5
8e2e6c118c9dcd2d8237a524fc6471c7
-
SHA1
7b81252eb124aab715202bdba4b68e9df3d8aac1
-
SHA256
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6
-
SHA512
36e5649d9a87f582e84b24c32940b37526eda89ecce73246d550700de465d03989cd74f440b6bbe1e7bb1e3879b59b69572f5ad22aefa209e6c9dad9753b4c25
-
SSDEEP
49152:N6mR++4SvTQ95imze9rNkpQD3yO5YXJ5VEgH1C:HtvTQJpQD3yOCXXVW
Behavioral task
behavioral1
Sample
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6
-
Size
3.9MB
-
MD5
8e2e6c118c9dcd2d8237a524fc6471c7
-
SHA1
7b81252eb124aab715202bdba4b68e9df3d8aac1
-
SHA256
90f71aa2da95120094a42bf392adab5a7b7a0f92e00df9616be7b714579876d6
-
SHA512
36e5649d9a87f582e84b24c32940b37526eda89ecce73246d550700de465d03989cd74f440b6bbe1e7bb1e3879b59b69572f5ad22aefa209e6c9dad9753b4c25
-
SSDEEP
49152:N6mR++4SvTQ95imze9rNkpQD3yO5YXJ5VEgH1C:HtvTQJpQD3yOCXXVW
Score9/10-
Renames multiple (226) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-