General
-
Target
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60
-
Size
180KB
-
Sample
241006-n4ad2asemm
-
MD5
85dca3c1780db98acb92ec584b88e480
-
SHA1
58ae397ccc97e56e354b3d480bcd12fb0b327380
-
SHA256
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60
-
SHA512
badf8813a80db1506b0c9036f8fb088c752f18599176a4e9f47745ef6f31d009a3cf0b1c82725f36e7ceefb109da624d1f0f575974ba903c6841f7db35a74a4c
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZye7WpMaxeb0CYJ97lEYNR73e+eKZT:RqKvb0CYJ973e+eKZJqKvb0CYJ973e+J
Static task
static1
Behavioral task
behavioral1
Sample
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60
-
Size
180KB
-
MD5
85dca3c1780db98acb92ec584b88e480
-
SHA1
58ae397ccc97e56e354b3d480bcd12fb0b327380
-
SHA256
f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60
-
SHA512
badf8813a80db1506b0c9036f8fb088c752f18599176a4e9f47745ef6f31d009a3cf0b1c82725f36e7ceefb109da624d1f0f575974ba903c6841f7db35a74a4c
-
SSDEEP
3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZye7WpMaxeb0CYJ97lEYNR73e+eKZT:RqKvb0CYJ973e+eKZJqKvb0CYJ973e+J
Score9/10-
Renames multiple (4490) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-