2024-06-12_11babe2683c8c834ce22ec794c08aaf9_babuk_destroyer

General

Target

2024-06-12_11babe2683c8c834ce22ec794c08aaf9_babuk_destroyer
Size

79KB
MD5

11babe2683c8c834ce22ec794c08aaf9
SHA1

cf08e06dd2bc63cb16953787a35a56385aed23b9
SHA256

2b1a870bac2632004b5dad8491b15c3f5ad363cc08bf275cf3d0b221c0439f1d
SHA512

f8bbd447ff1268d7e8fced06e4cc094c9f21267b45f25250a6def65e3400696481f694deea227edbcadfc8070bb8ed4cb808088c9c784f99ef34a0fd5758cff8
SSDEEP

1536:Y5UhZM4hubesrQLOJgY8ZZP8LHD4XWaNH71dLdG1iiFM2iG2zs4:/hZ5YesrQLOJgY8Zp8LHD4XWaNH71dLI

Score

10^/10

Detects command variations typically used by ransomware 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICIOUS_GENRansomware

Detects executables containing many references to VEEAM. Observed in ransomware 1 IoCs

resource	yara_rule
sample	INDICATOR_SUSPICOUS_EXE_References_VEEAM

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-12_11babe2683c8c834ce22ec794c08aaf9_babuk_destroyer