General
-
Target
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d
-
Size
43KB
-
Sample
250519-ntldjsxnt3
-
MD5
da42b6a3e966624071d2b9eacb5dc9b1
-
SHA1
7bb27efceef62f20acc45578723f8ff269d98701
-
SHA256
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d
-
SHA512
98a2ea650d260bfc3a997ecea68a1e40b6f1234270feaf8c0a8383bf48f5b1981b407845cf505637ea71e5877b4fd245bd2f157c23ba7278d5f588d69d914985
-
SSDEEP
768:uZ4FLz8ae+rOn8ae+rOdzEytU5CzEytU5cZ4FLz8ae+rOn8ae+rOdzEytU5CzEyY:uGIId7C5C7C5cGIId7C5C7C5wtvtE
Static task
static1
Behavioral task
behavioral1
Sample
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d.exe
Resource
win10v2004-20250502-en
Behavioral task
behavioral2
Sample
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d.exe
Resource
win11-20250502-en
Malware Config
Targets
-
-
Target
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d
-
Size
43KB
-
MD5
da42b6a3e966624071d2b9eacb5dc9b1
-
SHA1
7bb27efceef62f20acc45578723f8ff269d98701
-
SHA256
d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d
-
SHA512
98a2ea650d260bfc3a997ecea68a1e40b6f1234270feaf8c0a8383bf48f5b1981b407845cf505637ea71e5877b4fd245bd2f157c23ba7278d5f588d69d914985
-
SSDEEP
768:uZ4FLz8ae+rOn8ae+rOdzEytU5CzEytU5cZ4FLz8ae+rOn8ae+rOdzEytU5CzEyY:uGIId7C5C7C5cGIId7C5C7C5wtvtE
Score9/10-
Renames multiple (5260) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Drops file in System32 directory
-