General
-
Target
53e03197b8f58a85e80f1d17b4b17d96f68ac982f532833402fcad1480e261bc
-
Size
97KB
-
Sample
240928-1pm3ssxfkj
-
MD5
6aca5073cf463f5d7c074e5d3109a003
-
SHA1
4b43cda10a2dc8e7a1b4542e1efd74c3f1245a4e
-
SHA256
53e03197b8f58a85e80f1d17b4b17d96f68ac982f532833402fcad1480e261bc
-
SHA512
abff92e9542d16e3824cc2bbb46df59b5c588d0adc973818e7ccc78ee6f5ec16dfe87716b97a45cff9bf204fa2f0909ef6d4f75ac7849c0e9d4ec3e4491adbbb
-
SSDEEP
1536:W7ZppApBULcfpHLcfpSo3fstvt47ZppApBULcfpHLcfpSo3fstvtkxf:6pWpBwchcUtvt4pWpBwchcUtvtw
Malware Config
Targets
-
-
Target
53e03197b8f58a85e80f1d17b4b17d96f68ac982f532833402fcad1480e261bc
-
Size
97KB
-
MD5
6aca5073cf463f5d7c074e5d3109a003
-
SHA1
4b43cda10a2dc8e7a1b4542e1efd74c3f1245a4e
-
SHA256
53e03197b8f58a85e80f1d17b4b17d96f68ac982f532833402fcad1480e261bc
-
SHA512
abff92e9542d16e3824cc2bbb46df59b5c588d0adc973818e7ccc78ee6f5ec16dfe87716b97a45cff9bf204fa2f0909ef6d4f75ac7849c0e9d4ec3e4491adbbb
-
SSDEEP
1536:W7ZppApBULcfpHLcfpSo3fstvt47ZppApBULcfpHLcfpSo3fstvtkxf:6pWpBwchcUtvt4pWpBwchcUtvtw
Score9/10-
Renames multiple (4757) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-