General
-
Target
f8bb092153a4ea587d4276b529112fed76d8d42e2a71870a65094c4e980e2f55
-
Size
115KB
-
Sample
240826-fr6ygawhpe
-
MD5
6ac776c993dbb91caf34da1249cc1880
-
SHA1
1fcef6235ea9d5d44b7c7173906c44aeb4bf1fb6
-
SHA256
f8bb092153a4ea587d4276b529112fed76d8d42e2a71870a65094c4e980e2f55
-
SHA512
ee878e8cd0ad1d7c2149e38e72a202758abe3ca13d40434769ef107108e5642064898027e88b9927e7f004cd2b0f07e455706e0231fd7b0265cb6d0cf673a573
-
SSDEEP
768:W7BlpppARFbhFAxC7ntkntV/IGuk7BlpppARFbhFAxC7ntkntV/IGu3dwEbdwEH:W7ZppApryl7ZppAprymdwEbdwEH
Malware Config
Targets
-
-
Target
f8bb092153a4ea587d4276b529112fed76d8d42e2a71870a65094c4e980e2f55
-
Size
115KB
-
MD5
6ac776c993dbb91caf34da1249cc1880
-
SHA1
1fcef6235ea9d5d44b7c7173906c44aeb4bf1fb6
-
SHA256
f8bb092153a4ea587d4276b529112fed76d8d42e2a71870a65094c4e980e2f55
-
SHA512
ee878e8cd0ad1d7c2149e38e72a202758abe3ca13d40434769ef107108e5642064898027e88b9927e7f004cd2b0f07e455706e0231fd7b0265cb6d0cf673a573
-
SSDEEP
768:W7BlpppARFbhFAxC7ntkntV/IGuk7BlpppARFbhFAxC7ntkntV/IGu3dwEbdwEH:W7ZppApryl7ZppAprymdwEbdwEH
Score9/10-
Renames multiple (4309) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-