General
-
Target
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f
-
Size
61KB
-
Sample
240617-c7pscavdpn
-
MD5
15f55398674dd8231617798d4c5e3bf5
-
SHA1
0bc5b0d0fc0f3d335128b6e661b4bb62fe67a6b4
-
SHA256
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f
-
SHA512
335e3d59078bf577a9c22968f67f7dd819139077e81bd5c8b62fc84727a87dfb7adc8b5dbc11a93a5609aff425505e7ba1c45067ff970d7eddc94378964ea5dd
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/9:KQSohsUsUKW
Behavioral task
behavioral1
Sample
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f
-
Size
61KB
-
MD5
15f55398674dd8231617798d4c5e3bf5
-
SHA1
0bc5b0d0fc0f3d335128b6e661b4bb62fe67a6b4
-
SHA256
d40ef947e4c32beb14ce93c0c261bad9bb2b416de4a7095c8984dbc8fa4f238f
-
SHA512
335e3d59078bf577a9c22968f67f7dd819139077e81bd5c8b62fc84727a87dfb7adc8b5dbc11a93a5609aff425505e7ba1c45067ff970d7eddc94378964ea5dd
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8asUsJOLKc/9:KQSohsUsUKW
Score9/10-
Renames multiple (3433) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-