General
-
Target
249261084bf56f51333807568c18a6b0b532d581924aa262014b77f8c67ae343
-
Size
112KB
-
Sample
240801-1bf3bswhjm
-
MD5
6d8a78bd04ff0b69decc69b829aec962
-
SHA1
be59329be4b9f11765a175f6ae150b969b4c2238
-
SHA256
249261084bf56f51333807568c18a6b0b532d581924aa262014b77f8c67ae343
-
SHA512
4c463b11f95a0c0b8dfcd8e397b79157bcccd3a48ffa94ca88d2389aa4fccbebde2d3b5afc932c558bfff1270b9f9c748f0e4d572d1b3a958745d772d732024b
-
SSDEEP
768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwOvEJcvEJY7BlpppARFbhHFoqAJwBT:W7ZppApqvZvD7ZppApqvZvo
Malware Config
Targets
-
-
Target
249261084bf56f51333807568c18a6b0b532d581924aa262014b77f8c67ae343
-
Size
112KB
-
MD5
6d8a78bd04ff0b69decc69b829aec962
-
SHA1
be59329be4b9f11765a175f6ae150b969b4c2238
-
SHA256
249261084bf56f51333807568c18a6b0b532d581924aa262014b77f8c67ae343
-
SHA512
4c463b11f95a0c0b8dfcd8e397b79157bcccd3a48ffa94ca88d2389aa4fccbebde2d3b5afc932c558bfff1270b9f9c748f0e4d572d1b3a958745d772d732024b
-
SSDEEP
768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwOvEJcvEJY7BlpppARFbhHFoqAJwBT:W7ZppApqvZvD7ZppApqvZvo
Score9/10-
Renames multiple (872) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-