General
-
Target
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111
-
Size
1.1MB
-
Sample
240614-16gbksyame
-
MD5
e92147bae2ba54b73a4d8dd7bd92716d
-
SHA1
da42cbd2cc8aeee7985a2fc6f8e80018ea47796c
-
SHA256
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111
-
SHA512
6c0e2a450b691eeb887b41b909a90fdf3ea333829d0df0844be5a188e47651afb231331075a6609012869bab4c780e4e80d70c66e82d14582345a6a8b7ff1512
-
SSDEEP
12288:VQtnyhwRgTaUBBYK+7bghKlPbCEorrQEJ4J:VInySRglBYK+7bghKlGESC
Behavioral task
behavioral1
Sample
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111
-
Size
1.1MB
-
MD5
e92147bae2ba54b73a4d8dd7bd92716d
-
SHA1
da42cbd2cc8aeee7985a2fc6f8e80018ea47796c
-
SHA256
6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111
-
SHA512
6c0e2a450b691eeb887b41b909a90fdf3ea333829d0df0844be5a188e47651afb231331075a6609012869bab4c780e4e80d70c66e82d14582345a6a8b7ff1512
-
SSDEEP
12288:VQtnyhwRgTaUBBYK+7bghKlPbCEorrQEJ4J:VInySRglBYK+7bghKlGESC
Score9/10-
Renames multiple (227) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-