General
-
Target
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37
-
Size
122KB
-
Sample
240701-d4dfksvelc
-
MD5
5a18a39b8c6afaff6e73ba47163ac63b
-
SHA1
b233a0edc526bfe53cab9e77e60d0632ef4dae26
-
SHA256
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37
-
SHA512
ba6f085322eab18e33a633d0be0bf5c351379b95eb5043a01f3cb2fc9895493902ae23aa8751574ab56aacd635f1b2476885b6fc2978f890fc9b5f16c07ed059
-
SSDEEP
768:W7BlpppARFbhWJq5ovYcTEXBwzEXBw07BlpppARFbhWJq5ovYcTEXBwzEXBwOeb:W7ZppApF5ove7ZppApF5ovt
Static task
static1
Behavioral task
behavioral1
Sample
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37
-
Size
122KB
-
MD5
5a18a39b8c6afaff6e73ba47163ac63b
-
SHA1
b233a0edc526bfe53cab9e77e60d0632ef4dae26
-
SHA256
dc6aab1de8c52f33a56d3c6843a2499b0844613f48f8ba980ed3251b707d7a37
-
SHA512
ba6f085322eab18e33a633d0be0bf5c351379b95eb5043a01f3cb2fc9895493902ae23aa8751574ab56aacd635f1b2476885b6fc2978f890fc9b5f16c07ed059
-
SSDEEP
768:W7BlpppARFbhWJq5ovYcTEXBwzEXBw07BlpppARFbhWJq5ovYcTEXBwzEXBwOeb:W7ZppApF5ove7ZppApF5ovt
Score9/10-
Renames multiple (86) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-