General
-
Target
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N
-
Size
170KB
-
Sample
241016-xtl5hsxakd
-
MD5
aaf75d0c04032879b9f90b18ae6638b0
-
SHA1
2d474f9f054a1b38bb90cad6abd08f51745925da
-
SHA256
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42
-
SHA512
805efd638859a6cce013cb178781c71a2ee051a8cb47cd242d403e72496a751f7e8d460b3a66857c8c993803b684ff9600a54538e7a083a3bdb2d783363bd6f9
-
SSDEEP
1536:W7ZDpApYbWjIoPyPoLzV7c6ShWfxRfxMlw7ZDpApYbWjIoPyPoLzV7c6ShWfxRfY:6DWpLf7fWlwDWpLf7fWlZ
Static task
static1
Behavioral task
behavioral1
Sample
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N
-
Size
170KB
-
MD5
aaf75d0c04032879b9f90b18ae6638b0
-
SHA1
2d474f9f054a1b38bb90cad6abd08f51745925da
-
SHA256
39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42
-
SHA512
805efd638859a6cce013cb178781c71a2ee051a8cb47cd242d403e72496a751f7e8d460b3a66857c8c993803b684ff9600a54538e7a083a3bdb2d783363bd6f9
-
SSDEEP
1536:W7ZDpApYbWjIoPyPoLzV7c6ShWfxRfxMlw7ZDpApYbWjIoPyPoLzV7c6ShWfxRfY:6DWpLf7fWlwDWpLf7fWlZ
Score9/10-
Renames multiple (3444) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-