General
-
Target
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965
-
Size
67KB
-
Sample
240614-djllfswhjr
-
MD5
e0f7999496d2ca2dc5608153c7055a17
-
SHA1
4fc637672288c0f9784e05dc6952395215199136
-
SHA256
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965
-
SHA512
68aae32375d2a464b75376dd61dbc4b852908dc9b207a5674a4c0e0da2fe0207950ac5cd33ae4e8668327b74ecf067bc907ce1c95ad4fff09ad55515e7b7f792
-
SSDEEP
384:GBt7Br5xjL9AgA71FbhvuNBNrpNBt7Br5xjL9AgA71FbhvuNBNrp+92:W7BlpppARFbh2pd7BlpppARFbh2pL
Static task
static1
Behavioral task
behavioral1
Sample
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965
-
Size
67KB
-
MD5
e0f7999496d2ca2dc5608153c7055a17
-
SHA1
4fc637672288c0f9784e05dc6952395215199136
-
SHA256
b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965
-
SHA512
68aae32375d2a464b75376dd61dbc4b852908dc9b207a5674a4c0e0da2fe0207950ac5cd33ae4e8668327b74ecf067bc907ce1c95ad4fff09ad55515e7b7f792
-
SSDEEP
384:GBt7Br5xjL9AgA71FbhvuNBNrpNBt7Br5xjL9AgA71FbhvuNBNrp+92:W7BlpppARFbh2pd7BlpppARFbh2pL
Score9/10-
Renames multiple (4541) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-