General
-
Target
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN
-
Size
114KB
-
Sample
241006-h1y1bsyhre
-
MD5
b4e8c62a27b1df2856bc2f980d79dca0
-
SHA1
3b1c1a475111d08fa427df06c2ff7e6198e455a2
-
SHA256
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febca
-
SHA512
66040ad3863d5fa61ca06c1579cf32b80d9ebc0662d8f0e3dfb88198191ba0b1ce994dcae42fcc2362892119821bf3c5597a460bf09a58a0fa8d363bcec1592d
-
SSDEEP
768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7v7BlpQpARFbhvEXBwzEXBwLtAc7Fc7hzQM:/7ZQpApHov7ZQpApHohzQzI
Static task
static1
Behavioral task
behavioral1
Sample
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN
-
Size
114KB
-
MD5
b4e8c62a27b1df2856bc2f980d79dca0
-
SHA1
3b1c1a475111d08fa427df06c2ff7e6198e455a2
-
SHA256
f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febca
-
SHA512
66040ad3863d5fa61ca06c1579cf32b80d9ebc0662d8f0e3dfb88198191ba0b1ce994dcae42fcc2362892119821bf3c5597a460bf09a58a0fa8d363bcec1592d
-
SSDEEP
768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7v7BlpQpARFbhvEXBwzEXBwLtAc7Fc7hzQM:/7ZQpApHov7ZQpApHohzQzI
Score9/10-
Renames multiple (4376) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-