2024-06-11_49cbff60bcd2adfcfb34075e990977a4_crysis_dharma

General

Target

2024-06-11_49cbff60bcd2adfcfb34075e990977a4_crysis_dharma
Size

92KB
MD5

49cbff60bcd2adfcfb34075e990977a4
SHA1

a93ce2125592e26552a9fc2ff40a874b5d468523
SHA256

cdd4aa0e9f016553d7021d2ab2a9a79ba2d4e5be7949d06390072271fddb77c0
SHA512

9246fe7c38b43fae903c109bde651b44e8e14d0e487c59a7f7b3609a4c2e8f5dc582685116e33400892c241a9e34b1efeed9b74134d4f9e90339ad7da7d1dc05
SSDEEP

1536:GBwl+KXpsqN5vlwWYyhZ9S4AyFDbjzOx/8di/Laww8NOsC7okPpp3tb1:ww+asqN5aW/hSkpjzOx/zzaH8UsC9PpB

Score

10^/10

Detects win.dharma. 1 IoCs

Processes:

resource yara_rule

sample win_dharma_auto

resource	yara_rule
sample	win_dharma_auto

Identifies DHARMA ransomware 4 IoCs

Processes:

resource	yara_rule
sample	Windows_Ransomware_Dharma_aa5eefed
sample	Windows_Ransomware_Dharma_b31cac3f
sample	Windows_Ransomware_Dharma_e9319e4a
sample	Windows_Ransomware_Dharma_942142e3

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-06-11_49cbff60bcd2adfcfb34075e990977a4_crysis_dharma