General
-
Target
0f80ed8a0da7436e88cf577e9e9a1ae0N.exe
-
Size
148KB
-
Sample
240915-aywheswdlh
-
MD5
0f80ed8a0da7436e88cf577e9e9a1ae0
-
SHA1
9af1dbf7339d33b2c3d8e50b94036a86c397906d
-
SHA256
4828f51613d8c46e25ba7b1da089a32f9c7cf263feae44bac77fbaeda9bceeb4
-
SHA512
eef82fcd39c393b81904b203246380af3d39d24e09bf9f5f3cae852ea87f147cd0f24b291e2dcbecbd8edcd0faee27b8dc9e961092df2b4b9466e1f6feb63d4a
-
SSDEEP
768:/7BlpQpARFbhWGUKBb4JxobNlAGA+qAJwDqAJwd7BlpQpARFbhWGUKBb4JxobNl8:/7ZQpAp+KBpbNiB67ZQpAp+KBpbNiBf
Malware Config
Targets
-
-
Target
0f80ed8a0da7436e88cf577e9e9a1ae0N.exe
-
Size
148KB
-
MD5
0f80ed8a0da7436e88cf577e9e9a1ae0
-
SHA1
9af1dbf7339d33b2c3d8e50b94036a86c397906d
-
SHA256
4828f51613d8c46e25ba7b1da089a32f9c7cf263feae44bac77fbaeda9bceeb4
-
SHA512
eef82fcd39c393b81904b203246380af3d39d24e09bf9f5f3cae852ea87f147cd0f24b291e2dcbecbd8edcd0faee27b8dc9e961092df2b4b9466e1f6feb63d4a
-
SSDEEP
768:/7BlpQpARFbhWGUKBb4JxobNlAGA+qAJwDqAJwd7BlpQpARFbhWGUKBb4JxobNl8:/7ZQpAp+KBpbNiB67ZQpAp+KBpbNiBf
Score9/10-
Renames multiple (4112) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-