General
-
Target
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3
-
Size
67KB
-
Sample
240620-fv1kvsvfln
-
MD5
6d1f629720165e61d21e394653fefaed
-
SHA1
01f148c8d779306b4fb784d5978b23b0413b74f8
-
SHA256
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3
-
SHA512
716dbb488bb5332b8a1b18f615d60c394cff91980016a9f3a89eb4b7aebf1db97dacbaf64a50093f39c732b3e85842c7669c409e473801ed50199979063d1e5d
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8E:fnyiQSoj
Behavioral task
behavioral1
Sample
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3
-
Size
67KB
-
MD5
6d1f629720165e61d21e394653fefaed
-
SHA1
01f148c8d779306b4fb784d5978b23b0413b74f8
-
SHA256
ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3
-
SHA512
716dbb488bb5332b8a1b18f615d60c394cff91980016a9f3a89eb4b7aebf1db97dacbaf64a50093f39c732b3e85842c7669c409e473801ed50199979063d1e5d
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8E:fnyiQSoj
Score9/10-
Renames multiple (3489) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-