2024-06-11_efed3b0d307d291464dc3c084215502c_crysis_dharma

General

Target

2024-06-11_efed3b0d307d291464dc3c084215502c_crysis_dharma
Size

92KB
MD5

efed3b0d307d291464dc3c084215502c
SHA1

2ba1df6f24b824b01efb74f29fabcc0bb77eb411
SHA256

1a6b94477146dbbf20254a41271d27a706218fb3c4732f5288b194213e5a49e4
SHA512

ee3570f4929f9cfdcd809283ed4abc7d012dad9b374e7c1841bd299f7d2e695b866203a4918ad01f47e8f60e725eaafb9a10a6b4ee3314944c180ba0e9aac1ba
SSDEEP

1536:GBwl+KXpsqN5vlwWYyhZ9S4AD88drfLdfyNAUyOOa56zqhRolgT:ww+asqN5aW/hS5D9f5fy1zOa5uqhRo0

Score

10^/10

Detects win.dharma. 1 IoCs

Processes:

resource yara_rule

sample win_dharma_auto

resource	yara_rule
sample	win_dharma_auto

Identifies DHARMA ransomware 4 IoCs

Processes:

resource	yara_rule
sample	Windows_Ransomware_Dharma_aa5eefed
sample	Windows_Ransomware_Dharma_b31cac3f
sample	Windows_Ransomware_Dharma_e9319e4a
sample	Windows_Ransomware_Dharma_942142e3

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-06-11_efed3b0d307d291464dc3c084215502c_crysis_dharma