General
-
Target
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd
-
Size
77KB
-
Sample
240706-ykybvstera
-
MD5
4d0ead65444345ffcf3cc0d7eb13d10f
-
SHA1
bc532dcc454072ec66784ef72df4c2d7142a577e
-
SHA256
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd
-
SHA512
9b146a827ef49966536d117848fecf577fb5a2cdd2ed12f5afeff2627cb644048b939bce9484d6c6e5af8072687f58353307bdfdfa9452351cba68430361e81e
-
SSDEEP
768:W7BlpppARFbhbt7Y7FoICOiJfoICOiJ+7BlpppARFbhbt7Y7FoICOiJfoICOiJ3:W7ZppApWmL7ZppApWm8
Static task
static1
Behavioral task
behavioral1
Sample
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd.exe
Resource
win10v2004-20240704-en
Malware Config
Targets
-
-
Target
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd
-
Size
77KB
-
MD5
4d0ead65444345ffcf3cc0d7eb13d10f
-
SHA1
bc532dcc454072ec66784ef72df4c2d7142a577e
-
SHA256
291825a40a27a0b7b5b06ff7b4fa5fa9fb1b6658165bc047792144422c0b9cdd
-
SHA512
9b146a827ef49966536d117848fecf577fb5a2cdd2ed12f5afeff2627cb644048b939bce9484d6c6e5af8072687f58353307bdfdfa9452351cba68430361e81e
-
SSDEEP
768:W7BlpppARFbhbt7Y7FoICOiJfoICOiJ+7BlpppARFbhbt7Y7FoICOiJfoICOiJ3:W7ZppApWmL7ZppApWm8
Score9/10-
Renames multiple (6229) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-