General
-
Target
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3
-
Size
132KB
-
Sample
240611-bf5h2sydlm
-
MD5
447e32c766f5b73128c15d706cbede78
-
SHA1
5c849face8fa2a0a18be3ee00fbf01f3caf028b3
-
SHA256
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3
-
SHA512
3465f2e15ed115b9658da681829bb3f6fbbe4afdc9a0fa7ffee03e96a876b46b81ac179bfdad314a8869b78fff4a9ed9d322476b55505aeee071dcfd5df9e86c
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nHSTWn1++PJHJXA/OsR:fnyiQSohsUsxe+erZaQSohsUsxe+erZk
Behavioral task
behavioral1
Sample
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3
-
Size
132KB
-
MD5
447e32c766f5b73128c15d706cbede78
-
SHA1
5c849face8fa2a0a18be3ee00fbf01f3caf028b3
-
SHA256
9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3
-
SHA512
3465f2e15ed115b9658da681829bb3f6fbbe4afdc9a0fa7ffee03e96a876b46b81ac179bfdad314a8869b78fff4a9ed9d322476b55505aeee071dcfd5df9e86c
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nHSTWn1++PJHJXA/OsR:fnyiQSohsUsxe+erZaQSohsUsxe+erZk
Score9/10-
Renames multiple (3444) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-