Extracted

• • Target

    96a174e37f1554061238bd3439d6cc54e7fe9a435ef01bb35239ea289a42723c

  • Size

    79KB

  • MD5

    09bf7675031e2b2d9ebff54b1bee8293

  • SHA1

    340234e34e93cc2445105745dc04287b0dd40e4f

  • SHA256

    96a174e37f1554061238bd3439d6cc54e7fe9a435ef01bb35239ea289a42723c

  • SHA512

    565d896268ea6b8e6f8bfcba63cf692fd7ae59a7323fddbd1909d6693c90ab7f0fac424400ccc163c9070f4a475308bc34c5e84724f788cf9975c03fd827cdf4

  • SSDEEP

    1536:cGKKVxyAYCbnjzbYzWOnGWqr63X5nVEyMiyfq:nKeNbnDYzvGEX5XMZ

  Score

  10^/10

  contiransomwareupx

  • Conti Ransomware

    Ransomware generally thought to be a successor to Ryuk.

    ransomwareconti

  • Renames multiple (143) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2