General
-
Target
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039
-
Size
34KB
-
Sample
240614-yqd56stdqh
-
MD5
17e18fe73a160fefd820bb56591ada9e
-
SHA1
66834f8e2b7390ebdbdeed793bf0ce1b6ca01d28
-
SHA256
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039
-
SHA512
b30e18906638a44d9819d30d995446f9f212ee8a6910581544b77a9e7fb79d3bc592e94c10d9ed5a55222b87359fbb9523e45ca6aa7713ce7a653737d62157c8
-
SSDEEP
384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjbKeKr:V7Blpf/FAK65euBT37CPKK0SjbKeKr
Behavioral task
behavioral1
Sample
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039
-
Size
34KB
-
MD5
17e18fe73a160fefd820bb56591ada9e
-
SHA1
66834f8e2b7390ebdbdeed793bf0ce1b6ca01d28
-
SHA256
2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039
-
SHA512
b30e18906638a44d9819d30d995446f9f212ee8a6910581544b77a9e7fb79d3bc592e94c10d9ed5a55222b87359fbb9523e45ca6aa7713ce7a653737d62157c8
-
SSDEEP
384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjbKeKr:V7Blpf/FAK65euBT37CPKK0SjbKeKr
Score9/10-
Renames multiple (4136) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-