General
-
Target
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333
-
Size
122KB
-
Sample
240620-gbyslasajg
-
MD5
17f9290dff2c94f65cfa8e3891229427
-
SHA1
88f17263e56f0d46932c6e4d7b43a63c7c7978d2
-
SHA256
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333
-
SHA512
6324b496442eb2aed23993f68164a57bc1bc2008072e3c80be7ba845fa488b61835a7fa32b5b000c7398eaf8b1fbc720fa5075718b2da92ccb8330d874cca29d
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8NCuhTWn1++PJHJXA/OsIZfzc3/Q8NCuZ:fnyiQSoDuVQSoDuXuxqx
Behavioral task
behavioral1
Sample
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333
-
Size
122KB
-
MD5
17f9290dff2c94f65cfa8e3891229427
-
SHA1
88f17263e56f0d46932c6e4d7b43a63c7c7978d2
-
SHA256
f8d834e00cd45ddafbc3765f51ab478908e8aa2dc66084f79cb30490b09b0333
-
SHA512
6324b496442eb2aed23993f68164a57bc1bc2008072e3c80be7ba845fa488b61835a7fa32b5b000c7398eaf8b1fbc720fa5075718b2da92ccb8330d874cca29d
-
SSDEEP
1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8NCuhTWn1++PJHJXA/OsIZfzc3/Q8NCuZ:fnyiQSoDuVQSoDuXuxqx
Score9/10-
Renames multiple (3443) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-