General
-
Target
enc_windows_amd64.exe.bin
-
Size
3.9MB
-
Sample
241022-m4hvqstdpl
-
MD5
d1cd0d1ecf05b1c49c732e7070214676
-
SHA1
966752f12e81ffa1322da91f861fb0ee0ee771e7
-
SHA256
0622aed252556af50b834ae16392555e51d67b3a4c67a6836b98534a0d14d07d
-
SHA512
0034a06e2d0cdfd33795819d6a83794ed8eca02e22acd4da83fcef579ba235198e07a6bd9269022346f73e1d6e48064ea18109dfcbf340b7aaa404969dd04fa6
-
SSDEEP
49152:ihufkf4ncUrb/TpvO90d7HjmAFd4A64nsfJeVZGmrbqqCz+Qepylb5EmBamsgNTP:iknc4ZG2qepwE+0D+q
Static task
static1
Behavioral task
behavioral1
Sample
enc_windows_amd64.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
enc_windows_amd64.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
C:\Users\Default\Documents\HOW_RETURN_YOUR_DATA.TXT
http://panela3eefdzfzxzxcshfnbustdprtlhlbe3x2fqomdz7t33iqtzvjyd.onion/Url=ddb34da5-dce4-4b46-8f7d-4674ab38be9d
http://dataleakypypu7uwblm5kttv726l3iripago6p336xjnbstkjwrlnlid.onion
Targets
-
-
Target
enc_windows_amd64.exe.bin
-
Size
3.9MB
-
MD5
d1cd0d1ecf05b1c49c732e7070214676
-
SHA1
966752f12e81ffa1322da91f861fb0ee0ee771e7
-
SHA256
0622aed252556af50b834ae16392555e51d67b3a4c67a6836b98534a0d14d07d
-
SHA512
0034a06e2d0cdfd33795819d6a83794ed8eca02e22acd4da83fcef579ba235198e07a6bd9269022346f73e1d6e48064ea18109dfcbf340b7aaa404969dd04fa6
-
SSDEEP
49152:ihufkf4ncUrb/TpvO90d7HjmAFd4A64nsfJeVZGmrbqqCz+Qepylb5EmBamsgNTP:iknc4ZG2qepwE+0D+q
Score10/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-