General
-
Target
3008693dc09eff0e0975d9a5b33627ac23bd586be4cf92dc8ff5d8ffeab2a2eb
-
Size
79KB
-
Sample
240816-zmg84azdmq
-
MD5
440c713abf5612e81519781be420b07b
-
SHA1
39866ac578ae776e0b3ce0c5672d2c1d1c8fc1f5
-
SHA256
3008693dc09eff0e0975d9a5b33627ac23bd586be4cf92dc8ff5d8ffeab2a2eb
-
SHA512
da1f63e7f7f1c16882e8c97f2f80bcccce680e3b580f59aee098ae3e91e03ff09faee9ee92f68d76396ac6726235e90e9c7da9861d29e0dabb66d600076992ce
-
SSDEEP
1536:W7ZhA7pApM21LOA1LOl6vSt7ZhA7pApM21LOA1LOl6vSw:6e7WpMgLOiLO2S3e7WpMgLOiLO2Sw
Malware Config
Targets
-
-
Target
3008693dc09eff0e0975d9a5b33627ac23bd586be4cf92dc8ff5d8ffeab2a2eb
-
Size
79KB
-
MD5
440c713abf5612e81519781be420b07b
-
SHA1
39866ac578ae776e0b3ce0c5672d2c1d1c8fc1f5
-
SHA256
3008693dc09eff0e0975d9a5b33627ac23bd586be4cf92dc8ff5d8ffeab2a2eb
-
SHA512
da1f63e7f7f1c16882e8c97f2f80bcccce680e3b580f59aee098ae3e91e03ff09faee9ee92f68d76396ac6726235e90e9c7da9861d29e0dabb66d600076992ce
-
SSDEEP
1536:W7ZhA7pApM21LOA1LOl6vSt7ZhA7pApM21LOA1LOl6vSw:6e7WpMgLOiLO2S3e7WpMgLOiLO2Sw
Score9/10-
Renames multiple (4842) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-