General
-
Target
b5c88403dffff02a9ae9d36260d34afafa82560b731603b34565c13e88951037N
-
Size
83KB
-
Sample
241009-gf4veavcqm
-
MD5
8b33a9e853fda2a125b5f73904e161f0
-
SHA1
10c6cb93c487b445396070f75cfa1f900319cd6b
-
SHA256
b5c88403dffff02a9ae9d36260d34afafa82560b731603b34565c13e88951037
-
SHA512
c914d7d66b69dac58b57fc8f2e0da4b4030b8608ed2421d8064d0442a6acadb01ae189a3c2010043208d08bd431fa2631e537ce3a89f53be31a9092ab539dd6b
-
SSDEEP
1536:W7ZDpApmauaLXxpXxF7ZDpApmauaLXxpXxu+e8ccT+e8cc8:6DWprxNxPDWprxNxub8ccTb8cc8
Malware Config
Targets
-
-
Target
b5c88403dffff02a9ae9d36260d34afafa82560b731603b34565c13e88951037N
-
Size
83KB
-
MD5
8b33a9e853fda2a125b5f73904e161f0
-
SHA1
10c6cb93c487b445396070f75cfa1f900319cd6b
-
SHA256
b5c88403dffff02a9ae9d36260d34afafa82560b731603b34565c13e88951037
-
SHA512
c914d7d66b69dac58b57fc8f2e0da4b4030b8608ed2421d8064d0442a6acadb01ae189a3c2010043208d08bd431fa2631e537ce3a89f53be31a9092ab539dd6b
-
SSDEEP
1536:W7ZDpApmauaLXxpXxF7ZDpApmauaLXxpXxu+e8ccT+e8cc8:6DWprxNxPDWprxNxub8ccTb8cc8
Score9/10-
Renames multiple (4234) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-