General
-
Target
86a55ff90a6fa49f1f95857a0675daca9385bf9bea1dde06bfa25021249754f3N
-
Size
69KB
-
Sample
240918-k7ew5ssgpe
-
MD5
90523974b87f3c7cb41b8c6962b31b90
-
SHA1
ebf0e66543f2886e120f97102b34f9bf0bf1d855
-
SHA256
86a55ff90a6fa49f1f95857a0675daca9385bf9bea1dde06bfa25021249754f3
-
SHA512
86aebd1a76fed673a9d098d9e57ff8e6b0f6410d03f2d45276a65ce2e9de5f14a9fcb5bbb3532f87d855553832cceaeebc131fd784abab9f93e5e7b7614ad33e
-
SSDEEP
1536:W7ZhA7pApM21LOA1LOl6Ap7ZhA7pApM21LOA1LOl6A5WB:6e7WpMgLOiLO7e7WpMgLOiLOU
Malware Config
Targets
-
-
Target
86a55ff90a6fa49f1f95857a0675daca9385bf9bea1dde06bfa25021249754f3N
-
Size
69KB
-
MD5
90523974b87f3c7cb41b8c6962b31b90
-
SHA1
ebf0e66543f2886e120f97102b34f9bf0bf1d855
-
SHA256
86a55ff90a6fa49f1f95857a0675daca9385bf9bea1dde06bfa25021249754f3
-
SHA512
86aebd1a76fed673a9d098d9e57ff8e6b0f6410d03f2d45276a65ce2e9de5f14a9fcb5bbb3532f87d855553832cceaeebc131fd784abab9f93e5e7b7614ad33e
-
SSDEEP
1536:W7ZhA7pApM21LOA1LOl6Ap7ZhA7pApM21LOA1LOl6A5WB:6e7WpMgLOiLO7e7WpMgLOiLOU
Score9/10-
Renames multiple (4407) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-