2024-06-11_e7336fd4620b673218b73b52d3d359f4_crysis_dharma

General

Target

2024-06-11_e7336fd4620b673218b73b52d3d359f4_crysis_dharma
Size

92KB
MD5

e7336fd4620b673218b73b52d3d359f4
SHA1

ea64c1177ca3cd54a906a7a3ed93efb140305e5f
SHA256

19cd6b2b765dae01da69b7070b96551a14237ea1b0192bb8282e76af07bef6ae
SHA512

162d709c280ffd76a4482e1cab5c5609cbee0d547a13af6f6f7d086b193351d60136e7129c3e7de633335f93bd0a970982ad3446b27cb2e2c29325bb7e34783e
SSDEEP

1536:GBwl+KXpsqN5vlwWYyhZ9S4A3CnBt8WKuKZLlKYy2lsC:ww+asqN5aW/hSFEX8WKuulvyKsC

Score

10^/10

Detects win.dharma. 1 IoCs

Processes:

resource yara_rule

sample win_dharma_auto

resource	yara_rule
sample	win_dharma_auto

Identifies DHARMA ransomware 4 IoCs

Processes:

resource	yara_rule
sample	Windows_Ransomware_Dharma_aa5eefed
sample	Windows_Ransomware_Dharma_b31cac3f
sample	Windows_Ransomware_Dharma_e9319e4a
sample	Windows_Ransomware_Dharma_942142e3

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-06-11_e7336fd4620b673218b73b52d3d359f4_crysis_dharma