General
-
Target
ed7fb0232ebfb2fa8d88a3ae15de9622d9b70dddb27518c1b4f8053425012827
-
Size
93KB
-
Sample
240701-eyayyawdjh
-
MD5
de9e9a093fd5be86f325bb24e8836bea
-
SHA1
877d5ef3369b86165b60e3b02ff9ff7008f54358
-
SHA256
ed7fb0232ebfb2fa8d88a3ae15de9622d9b70dddb27518c1b4f8053425012827
-
SHA512
0c6ed5cbed238d264b5b4d4b5ea3765a66b39f25ee45d65c8651315ee4645797b072dcd92c2b8b07b75ea838d0bb713e5748cc823b7949c55a230d1f5545ef49
-
SSDEEP
1536:W7ZppApoJKaJKlZ/D5zf6ydyf+abMkF24kzK3jbrCkoRWNkzZ/D5zf6ydyf+abMX:6pWpzZ/D5zf6ydyf+abMkF24kzK3jbrQ
Malware Config
Targets
-
-
Target
ed7fb0232ebfb2fa8d88a3ae15de9622d9b70dddb27518c1b4f8053425012827
-
Size
93KB
-
MD5
de9e9a093fd5be86f325bb24e8836bea
-
SHA1
877d5ef3369b86165b60e3b02ff9ff7008f54358
-
SHA256
ed7fb0232ebfb2fa8d88a3ae15de9622d9b70dddb27518c1b4f8053425012827
-
SHA512
0c6ed5cbed238d264b5b4d4b5ea3765a66b39f25ee45d65c8651315ee4645797b072dcd92c2b8b07b75ea838d0bb713e5748cc823b7949c55a230d1f5545ef49
-
SSDEEP
1536:W7ZppApoJKaJKlZ/D5zf6ydyf+abMkF24kzK3jbrCkoRWNkzZ/D5zf6ydyf+abMX:6pWpzZ/D5zf6ydyf+abMkF24kzK3jbrQ
Score9/10-
Renames multiple (4767) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-