General
-
Target
10f325dafd7aa0192c1952706b1be002f1d54052002f96e21c24280a1f481dc8
-
Size
93KB
-
Sample
240808-xbgr3sxdnn
-
MD5
0790d4223e7b5abcba01851d8c45c21a
-
SHA1
00c0deede16ba60757a19715c555dbc50f222889
-
SHA256
10f325dafd7aa0192c1952706b1be002f1d54052002f96e21c24280a1f481dc8
-
SHA512
9ac16ddddd3b393107e79e1ae8abac006b370d791b91bb307ef7f72b603b5947a88fa9e895eaa2bf890789ce8be76e80bb5ad33f07644507a8f2dc8a1bec7a29
-
SSDEEP
1536:W7ZppApBULcfpHLcfpyDA6a7ZppApBULcfpHLcfpyDA6p:6pWpBwchcwDupWpBwchcwD5
Malware Config
Targets
-
-
Target
10f325dafd7aa0192c1952706b1be002f1d54052002f96e21c24280a1f481dc8
-
Size
93KB
-
MD5
0790d4223e7b5abcba01851d8c45c21a
-
SHA1
00c0deede16ba60757a19715c555dbc50f222889
-
SHA256
10f325dafd7aa0192c1952706b1be002f1d54052002f96e21c24280a1f481dc8
-
SHA512
9ac16ddddd3b393107e79e1ae8abac006b370d791b91bb307ef7f72b603b5947a88fa9e895eaa2bf890789ce8be76e80bb5ad33f07644507a8f2dc8a1bec7a29
-
SSDEEP
1536:W7ZppApBULcfpHLcfpyDA6a7ZppApBULcfpHLcfpyDA6p:6pWpBwchcwDupWpBwchcwD5
Score9/10-
Renames multiple (5091) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-