General
-
Target
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b
-
Size
44KB
-
Sample
240701-dfg4vstgld
-
MD5
068752883693aba99e8db95aaab986be
-
SHA1
a8778695a3e032089c81c9613416dfb814a03566
-
SHA256
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b
-
SHA512
cc6697e8abdcccc0f1c7d3b27de06610c0041da51b740af6f3acd6bd04e83da3821425a63aafc4319e8b4b69c81fd7c01b685cbddd4aa150d2d708eb7a821829
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJjtf8WUtf8WGoj9COieQJfoj9COieQJ0Z2X:V7Zf/FAxTWoJJ2WjWpf1fX2X
Behavioral task
behavioral1
Sample
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b
-
Size
44KB
-
MD5
068752883693aba99e8db95aaab986be
-
SHA1
a8778695a3e032089c81c9613416dfb814a03566
-
SHA256
cf89342fdea1b00004ba5ab42ce8f287bc7035cd4dedeaa0146f7f1f7835342b
-
SHA512
cc6697e8abdcccc0f1c7d3b27de06610c0041da51b740af6f3acd6bd04e83da3821425a63aafc4319e8b4b69c81fd7c01b685cbddd4aa150d2d708eb7a821829
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJjtf8WUtf8WGoj9COieQJfoj9COieQJ0Z2X:V7Zf/FAxTWoJJ2WjWpf1fX2X
Score9/10-
Renames multiple (2834) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-