General
-
Target
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76
-
Size
90KB
-
Sample
240701-dvgrmsvcjb
-
MD5
aeab52c64d6e5b232b4fa51151950327
-
SHA1
70102b052fc38b02f017c600ae56a5409d061291
-
SHA256
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76
-
SHA512
d9876e61603b3c1ea21ebc97fe7ba90e1753fa1e9699b9d9a24ceb0aa290cf6f817db9b800f93b65873161a33dc749a03e77c0fb70dd30bf0210b160fbbd916f
-
SSDEEP
768:a7BlpyqaFAK65eCv+cIA0fm7Nm0CAbLg++PJHJzIWD4adZdhAIuZAIuniXGBcCB+:a7ZyqaFAlsr1++PJHJXFAIuZAIus0J01
Behavioral task
behavioral1
Sample
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76
-
Size
90KB
-
MD5
aeab52c64d6e5b232b4fa51151950327
-
SHA1
70102b052fc38b02f017c600ae56a5409d061291
-
SHA256
d80ac5d34604b7121f795c0e19eeb531ab0a90b7cbc1041830e8df7487422b76
-
SHA512
d9876e61603b3c1ea21ebc97fe7ba90e1753fa1e9699b9d9a24ceb0aa290cf6f817db9b800f93b65873161a33dc749a03e77c0fb70dd30bf0210b160fbbd916f
-
SSDEEP
768:a7BlpyqaFAK65eCv+cIA0fm7Nm0CAbLg++PJHJzIWD4adZdhAIuZAIuniXGBcCB+:a7ZyqaFAlsr1++PJHJXFAIuZAIus0J01
Score9/10-
Renames multiple (3454) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-