General
-
Target
d6b32fa900415c88019bba8bf84415c104c0b19ade0ce8ed549b8f9a3fd282dd
-
Size
93KB
-
Sample
240829-d7c9zssapb
-
MD5
98bf80ca6626f2ea8735a01d95309637
-
SHA1
36b34ce344c5cd47b7825b196fc156e60adddbd5
-
SHA256
d6b32fa900415c88019bba8bf84415c104c0b19ade0ce8ed549b8f9a3fd282dd
-
SHA512
ea7e3bf3a97d9ab5f4dab46c9866d45c79379bb8711a65f841c96b0b67ba7d30c008f0728fa6b0c741fce50352e6a432ad20ebb231d1b401a4bde35c2d14d440
-
SSDEEP
1536:W7ZppApBULcfpHLcfpCKP2awclvmxaKP2awclvmxc7ZppApBULcfpHLcfpCKP2az:6pWpBwchcRP2awclvmxrP2awclvmxcp1
Malware Config
Targets
-
-
Target
d6b32fa900415c88019bba8bf84415c104c0b19ade0ce8ed549b8f9a3fd282dd
-
Size
93KB
-
MD5
98bf80ca6626f2ea8735a01d95309637
-
SHA1
36b34ce344c5cd47b7825b196fc156e60adddbd5
-
SHA256
d6b32fa900415c88019bba8bf84415c104c0b19ade0ce8ed549b8f9a3fd282dd
-
SHA512
ea7e3bf3a97d9ab5f4dab46c9866d45c79379bb8711a65f841c96b0b67ba7d30c008f0728fa6b0c741fce50352e6a432ad20ebb231d1b401a4bde35c2d14d440
-
SSDEEP
1536:W7ZppApBULcfpHLcfpCKP2awclvmxaKP2awclvmxc7ZppApBULcfpHLcfpCKP2az:6pWpBwchcRP2awclvmxrP2awclvmxcp1
Score9/10-
Renames multiple (1176) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-