Overview

overview

10

Static

static

10

2024-06-11...bi.exe

windows7-x64

3

2024-06-11...bi.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-11_ef9225ada69416798e2dc4b6b5b1e1b9_revil_sodinokibi

  • Size

    280KB

  • MD5

    ef9225ada69416798e2dc4b6b5b1e1b9

  • SHA1

    55a2cd544543081f27280fef06308daefeb7c5f6

  • SHA256

    c008a7199303cc2deb1e1669de963a8693abd615914bc88243d147e961e2744e

  • SHA512

    61a24c0a0ab3ad1dbcd4e9b1cdfafbf210b8704b20aaaeed6e228c43c3ed94fb29b7917ef610cc68c4538cb3676309b7a3dee44361fa5fd6f4d61a6455aac7ef

  • SSDEEP

    3072:Hp5SexkWinjV8jojjM7FlqJ0bUr8EpHxGLbi4eTMlwDCnu/q/IF+l4xjwKX9H:JvGWAjw7q6bUQEpYbnWJ/gIF+lmL

Score
10/10
sodinokibi

Malware Config

Signatures

  • Sodinokibi family
    sodinokibi
  • Sodinokibi/Revil sample 1 IoCs
  • UPX dump on OEP (original entry point) 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-06-11_ef9225ada69416798e2dc4b6b5b1e1b9_revil_sodinokibi
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections