General
-
Target
a3db09a7222a24c6d97127a1ecb4163e4f694248b003750098a7725e55a917da
-
Size
81KB
-
Sample
240810-bad4xasbje
-
MD5
b96f00174758b26e35424ad1f71daf83
-
SHA1
e182d2e60e0d38609ca81fd6d74ffba28aa3e03a
-
SHA256
a3db09a7222a24c6d97127a1ecb4163e4f694248b003750098a7725e55a917da
-
SHA512
7059fe4b9eff42f5cbc9732407f33f061aaaf1780aef1c5ef70e5b9df7f04e3ac0c6b319b4e06d897350413102b7c8c5108dee5338eb29cdb098200f57ce7abb
-
SSDEEP
768:/7BlpQpARFbhNIyK5c5N7BlpQpARFbhNIyK5c587c7B:/7ZQpApA6z7ZQpApA6KwB
Malware Config
Targets
-
-
Target
a3db09a7222a24c6d97127a1ecb4163e4f694248b003750098a7725e55a917da
-
Size
81KB
-
MD5
b96f00174758b26e35424ad1f71daf83
-
SHA1
e182d2e60e0d38609ca81fd6d74ffba28aa3e03a
-
SHA256
a3db09a7222a24c6d97127a1ecb4163e4f694248b003750098a7725e55a917da
-
SHA512
7059fe4b9eff42f5cbc9732407f33f061aaaf1780aef1c5ef70e5b9df7f04e3ac0c6b319b4e06d897350413102b7c8c5108dee5338eb29cdb098200f57ce7abb
-
SSDEEP
768:/7BlpQpARFbhNIyK5c5N7BlpQpARFbhNIyK5c587c7B:/7ZQpApA6z7ZQpApA6KwB
Score9/10-
Renames multiple (6109) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-