General
-
Target
2024-12-18_256ad00d2ead9b2d3734301108cfd4d7_darkside
-
Size
147KB
-
Sample
241218-hfs9caypdp
-
MD5
256ad00d2ead9b2d3734301108cfd4d7
-
SHA1
dd9c909dc8b269b780e4c416f1acdcdb34763eeb
-
SHA256
763b65a4c7cf55aba8913378892cb0716585f502bc2695e839b493a46c372b5e
-
SHA512
974879b9742911743da4f7b3cc1c00e189306939518c32eaa53b5441006eea6b708f55040df7da0a39655beaa0c75aa2c28dad6d1dfac3fbeb6aaf44d48678a9
-
SSDEEP
3072:HqJogYkcSNm9V7DQRjq2vsdXbzTuP5SRRBdf1CT:Hq2kc4m9tD3NPwUFf1
Behavioral task
behavioral1
Sample
2024-12-18_256ad00d2ead9b2d3734301108cfd4d7_darkside.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
2024-12-18_256ad00d2ead9b2d3734301108cfd4d7_darkside.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
2024-12-18_256ad00d2ead9b2d3734301108cfd4d7_darkside
-
Size
147KB
-
MD5
256ad00d2ead9b2d3734301108cfd4d7
-
SHA1
dd9c909dc8b269b780e4c416f1acdcdb34763eeb
-
SHA256
763b65a4c7cf55aba8913378892cb0716585f502bc2695e839b493a46c372b5e
-
SHA512
974879b9742911743da4f7b3cc1c00e189306939518c32eaa53b5441006eea6b708f55040df7da0a39655beaa0c75aa2c28dad6d1dfac3fbeb6aaf44d48678a9
-
SSDEEP
3072:HqJogYkcSNm9V7DQRjq2vsdXbzTuP5SRRBdf1CT:Hq2kc4m9tD3NPwUFf1
Score9/10-
Renames multiple (330) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Drops desktop.ini file(s)
-