General
-
Target
dd27f127a575f6a4d78b2e32ae4784a0cee6bf41948c32af12891e3d824985ae
-
Size
138KB
-
Sample
240727-e9a33sxglq
-
MD5
a7a27ac52a0676d8753da7e998746e94
-
SHA1
3970a53bd98b65d04dcc79e1bfaf100651281679
-
SHA256
dd27f127a575f6a4d78b2e32ae4784a0cee6bf41948c32af12891e3d824985ae
-
SHA512
a8bc971f66e05ae5d5862685235e6bc740b14f6aaf7fe2b776a03dc0441903657ea03d8bbceaf801168c6167b177ccda76d8f364808a0e954ca6d4621227ced4
-
SSDEEP
768:/7BlpQpARFbhiWbMwH7BlpQpARFbhiWbMwnhV:/7ZQpAp/37ZQpAp/3hV
Malware Config
Targets
-
-
Target
dd27f127a575f6a4d78b2e32ae4784a0cee6bf41948c32af12891e3d824985ae
-
Size
138KB
-
MD5
a7a27ac52a0676d8753da7e998746e94
-
SHA1
3970a53bd98b65d04dcc79e1bfaf100651281679
-
SHA256
dd27f127a575f6a4d78b2e32ae4784a0cee6bf41948c32af12891e3d824985ae
-
SHA512
a8bc971f66e05ae5d5862685235e6bc740b14f6aaf7fe2b776a03dc0441903657ea03d8bbceaf801168c6167b177ccda76d8f364808a0e954ca6d4621227ced4
-
SSDEEP
768:/7BlpQpARFbhiWbMwH7BlpQpARFbhiWbMwnhV:/7ZQpAp/37ZQpAp/3hV
Score9/10-
Renames multiple (323) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-