General
-
Target
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830
-
Size
119KB
-
Sample
240701-e5zwmszcjk
-
MD5
d9204cf0524e901849398d57b52b00d7
-
SHA1
b0f86a7c20427696254a96be30439459da80bd8b
-
SHA256
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830
-
SHA512
70ee0ae7d5877ffd69f0eea6da13b689367bd205db03196e3d8911b3d4f21524a2b8f04fee8470dc68ab910a76c6e0f406e9861c543a7f18bd573c4a9c773cfa
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx5C9TWn1++PJHJXA/OsIZfzc3/Q8zx5CS0R:KQSoJQSoT
Behavioral task
behavioral1
Sample
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830
-
Size
119KB
-
MD5
d9204cf0524e901849398d57b52b00d7
-
SHA1
b0f86a7c20427696254a96be30439459da80bd8b
-
SHA256
f203e3dcdac881a48bed4fda15ffa7a95b519fe2bd5a523525c850a8a25ea830
-
SHA512
70ee0ae7d5877ffd69f0eea6da13b689367bd205db03196e3d8911b3d4f21524a2b8f04fee8470dc68ab910a76c6e0f406e9861c543a7f18bd573c4a9c773cfa
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx5C9TWn1++PJHJXA/OsIZfzc3/Q8zx5CS0R:KQSoJQSoT
Score9/10-
Renames multiple (4028) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-