2024-06-11_3218917a67a4139acc428caf5ff9ccc5_crysis_dharma

General

Target

2024-06-11_3218917a67a4139acc428caf5ff9ccc5_crysis_dharma
Size

92KB
MD5

3218917a67a4139acc428caf5ff9ccc5
SHA1

460e0278ba8e4cb904587944c1da76437e102360
SHA256

ab609c34aa4646384c6c0d9b37abda0e4eb9781d488cf5f6903c341c47d7dbc1
SHA512

4fd5ea55704d932196e1d759eb718afe5f2e913e35296b1c520bb65c5a5431ea5b7fce5ef9a8379ec0e91344c4542359570f05d7c43a6093abe1d676ad9c7e80
SSDEEP

1536:GBwl+KXpsqN5vlwWYyhZ9S4AHeAzVbobr+t+NK1GcoDc50cO2tqpbe:ww+asqN5aW/hSUUVEnHKIcAtcO2tqpb

Score

10^/10

Detects win.dharma. 1 IoCs

Processes:

resource yara_rule

sample win_dharma_auto

resource	yara_rule
sample	win_dharma_auto

Identifies DHARMA ransomware 4 IoCs

Processes:

resource	yara_rule
sample	Windows_Ransomware_Dharma_aa5eefed
sample	Windows_Ransomware_Dharma_b31cac3f
sample	Windows_Ransomware_Dharma_e9319e4a
sample	Windows_Ransomware_Dharma_942142e3

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-06-11_3218917a67a4139acc428caf5ff9ccc5_crysis_dharma