General
-
Target
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7
-
Size
137KB
-
Sample
240701-dsgnvsxhjm
-
MD5
cc9505c4798159b72ef1a6fae9f71277
-
SHA1
58d4c38f9779e1b5b96a3f864c21c053e798b687
-
SHA256
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7
-
SHA512
1643aa634648309bfdf22512e8686a2f4376c3baf22df7e252be259ebe8744c98bbd3d09594b1e5623f12bc54c290e788166c85bac292504767f43ac8732d765
-
SSDEEP
1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCm7ZyqaFAxTWH1++PJHJXA/Ose:enaypQSoskVnaypQSosk3
Behavioral task
behavioral1
Sample
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7
-
Size
137KB
-
MD5
cc9505c4798159b72ef1a6fae9f71277
-
SHA1
58d4c38f9779e1b5b96a3f864c21c053e798b687
-
SHA256
d6b432e2426d8d771b3eeddd6488644736b289b7171a44155cad8a7c2d6204b7
-
SHA512
1643aa634648309bfdf22512e8686a2f4376c3baf22df7e252be259ebe8744c98bbd3d09594b1e5623f12bc54c290e788166c85bac292504767f43ac8732d765
-
SSDEEP
1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCm7ZyqaFAxTWH1++PJHJXA/Ose:enaypQSoskVnaypQSosk3
Score9/10-
Renames multiple (1051) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-