General
-
Target
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265
-
Size
91KB
-
Sample
240616-dhd5zsxape
-
MD5
2bc60ec2a93b17bce801d74ce60366ba
-
SHA1
2548a0d62ef698e5fb51ce76d18e506b6a1fb1e5
-
SHA256
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265
-
SHA512
a4e321b24432ba136b27f9da766bf17c26ec1a4cac68b1b1fac13a78443a0e200ba279f556223cca6b46ae36d172dd6f4b81dadd49b0f6fdbea374ae66ae3490
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFdX7BlpNLpARFbhblkYlkuvIYFdv:W7ZNLpApCZuvIYXX7ZNLpApCZuvIYXv
Static task
static1
Behavioral task
behavioral1
Sample
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265
-
Size
91KB
-
MD5
2bc60ec2a93b17bce801d74ce60366ba
-
SHA1
2548a0d62ef698e5fb51ce76d18e506b6a1fb1e5
-
SHA256
d3ac74e8b45baef68f755ba4470030247446a86159deb887cf3190fd0c242265
-
SHA512
a4e321b24432ba136b27f9da766bf17c26ec1a4cac68b1b1fac13a78443a0e200ba279f556223cca6b46ae36d172dd6f4b81dadd49b0f6fdbea374ae66ae3490
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFdX7BlpNLpARFbhblkYlkuvIYFdv:W7ZNLpApCZuvIYXX7ZNLpApCZuvIYXv
Score9/10-
Renames multiple (5642) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-