General
-
Target
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314
-
Size
84KB
-
Sample
240620-f6lk3s1flb
-
MD5
4884d74ae3f0da99e68cd973b922348b
-
SHA1
4ce36f83dd2104d2cdbc8db7729f6fb801f71faa
-
SHA256
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314
-
SHA512
659865e68c6f8328dff6587b3afb8da7de4b78ecff2f92c99705fd5be639f0fbb4cdfad5a629256b53b6a926a728e4f3d2f9f0fe98230edeb9b0033e52a7cffc
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFds7BlpNLpARFbhblkYlkuvIYFdY:W7ZNLpApCZuvIYXs7ZNLpApCZuvIYXY
Static task
static1
Behavioral task
behavioral1
Sample
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314
-
Size
84KB
-
MD5
4884d74ae3f0da99e68cd973b922348b
-
SHA1
4ce36f83dd2104d2cdbc8db7729f6fb801f71faa
-
SHA256
f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314
-
SHA512
659865e68c6f8328dff6587b3afb8da7de4b78ecff2f92c99705fd5be639f0fbb4cdfad5a629256b53b6a926a728e4f3d2f9f0fe98230edeb9b0033e52a7cffc
-
SSDEEP
768:W7BlpNLpARFbhblkYlkuvIYFds7BlpNLpARFbhblkYlkuvIYFdY:W7ZNLpApCZuvIYXs7ZNLpApCZuvIYXY
Score9/10-
Renames multiple (4887) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-