General
-
Target
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584
-
Size
92KB
-
Sample
240706-xlkxgssfng
-
MD5
4221ab1591ca02f3f4992a0ca264dd83
-
SHA1
df94eaf4fb355c00544f8635f556bfa412bfbe7e
-
SHA256
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584
-
SHA512
3d49f5b6c60d9a44a88774ef347b6df00edb45e64e1fca2ba81592e230c8c844bb15fe399e325d69cd23ab329d0049823ebfa86109a66e7b6ba7e4a9491b1647
-
SSDEEP
1536:W7ZppApBULcfpHLcfpzSWu0SWuE7ZppApBULcfpHLcfpzSWu0SWuKEaEB:6pWpBwchcxSWu0SWuEpWpBwchcxSWu0a
Static task
static1
Behavioral task
behavioral1
Sample
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584.exe
Resource
win10v2004-20240704-en
Malware Config
Targets
-
-
Target
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584
-
Size
92KB
-
MD5
4221ab1591ca02f3f4992a0ca264dd83
-
SHA1
df94eaf4fb355c00544f8635f556bfa412bfbe7e
-
SHA256
14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584
-
SHA512
3d49f5b6c60d9a44a88774ef347b6df00edb45e64e1fca2ba81592e230c8c844bb15fe399e325d69cd23ab329d0049823ebfa86109a66e7b6ba7e4a9491b1647
-
SSDEEP
1536:W7ZppApBULcfpHLcfpzSWu0SWuE7ZppApBULcfpHLcfpzSWu0SWuKEaEB:6pWpBwchcxSWu0SWuEpWpBwchcxSWu0a
Score9/10-
Renames multiple (977) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-