General
-
Target
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9
-
Size
151KB
-
Sample
250516-cl9kmawkw3
-
MD5
8c6070c6de4bb47747dd39750a2840ad
-
SHA1
2ab24313f330bc32e173929ad5bfaf5b012e9f07
-
SHA256
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9
-
SHA512
c58ce682770bef0bb34ad9d109b56574acdcce9d603f7e9054411340466b1e722c795b39cea05830ff81d188253213f64cb304005f346b4c17e6cbd1cbaf88b7
-
SSDEEP
3072:spWpt+SwyTHBuDZghl3/BnaBRG+72u/NZbhC:Nv+jyTgyH/BYRG+72aNZk
Static task
static1
Behavioral task
behavioral1
Sample
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9.exe
Resource
win10v2004-20250502-en
Behavioral task
behavioral2
Sample
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9.exe
Resource
win11-20250502-en
Malware Config
Targets
-
-
Target
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9
-
Size
151KB
-
MD5
8c6070c6de4bb47747dd39750a2840ad
-
SHA1
2ab24313f330bc32e173929ad5bfaf5b012e9f07
-
SHA256
d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9
-
SHA512
c58ce682770bef0bb34ad9d109b56574acdcce9d603f7e9054411340466b1e722c795b39cea05830ff81d188253213f64cb304005f346b4c17e6cbd1cbaf88b7
-
SSDEEP
3072:spWpt+SwyTHBuDZghl3/BnaBRG+72u/NZbhC:Nv+jyTgyH/BYRG+72aNZk
Score9/10-
Renames multiple (4839) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-