General
-
Target
4b182e0c6d6e02d2b07fec7d48e6fff17c2b8b3a059a827b03c3301b067fa16aN
-
Size
76KB
-
Sample
240921-m8h2asyfnc
-
MD5
10dd2a87cf928b8f1899f9c16256fc10
-
SHA1
208ea273a76d7b9fb57ee7d565a6160f3ca647c5
-
SHA256
4b182e0c6d6e02d2b07fec7d48e6fff17c2b8b3a059a827b03c3301b067fa16a
-
SHA512
6ac8916edb9833f35df8fc207bb477fcf9b48d9133adc806d1d71761f856e201beab93c633e51773f45f77938452435ff5497ffec2a79c1ac4e629a11288edb1
-
SSDEEP
768:/7BlpQpARFbhVvbM2MD7BlpQpARFbhVvbM2Mg:/7ZQpApVvU7ZQpApVvB
Malware Config
Targets
-
-
Target
4b182e0c6d6e02d2b07fec7d48e6fff17c2b8b3a059a827b03c3301b067fa16aN
-
Size
76KB
-
MD5
10dd2a87cf928b8f1899f9c16256fc10
-
SHA1
208ea273a76d7b9fb57ee7d565a6160f3ca647c5
-
SHA256
4b182e0c6d6e02d2b07fec7d48e6fff17c2b8b3a059a827b03c3301b067fa16a
-
SHA512
6ac8916edb9833f35df8fc207bb477fcf9b48d9133adc806d1d71761f856e201beab93c633e51773f45f77938452435ff5497ffec2a79c1ac4e629a11288edb1
-
SSDEEP
768:/7BlpQpARFbhVvbM2MD7BlpQpARFbhVvbM2Mg:/7ZQpApVvU7ZQpApVvB
Score9/10-
Renames multiple (3612) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-