- First seen: April 2021
- Aliases:
- Samples:
- 5b7ecf7e9d0715f1122baf4ce745c5fcd769dee48150616753fec4d6da16e99e | windows | ransom | pe
| Property | Value |
|---|---|
| Size | 781998 bytes |
| CRC32 | 0xaea9a1e7 |
| MD5 | 4118d9adce7350c3eedeb056a3335346 |
| SHA1 | c0e6d59e99e4adb58a2f57abf0deba61dee55c2f |
| SHA256 | 5b7ecf7e9d0715f1122baf4ce745c5fcd769dee48150616753fec4d6da16e99e |
| SHA512 | c1c2053da9b11fa8240d070b59d5d11c778dc78443002def2a1e925d8fb4221225db1bd57eb5c5cd65711f87f939c6138eeda07ccf0bbd6450a599de9166013a |
| Ssdeep | 12288:Y+2NRE6xDWPOO3Kt7RJatTrAtfpYqCXd9rxhQjxY:YhRxWPOO3Kt7FfpYhXjHQjxY |
| Magic | PE32 executable (console) Intel 80386, for MS Windows |
| Packer | PE: compiler: Microsoft Visual C/C++(2008)[libcmt,wmain] PE: linker: Microsoft Linker(9.0)[EXE32,console] |
| TrID | 47.3% (.EXE) Win32 Executable MS Visual C++ (generic) (31206/45/13) 15.9% (.EXE) Win64 Executable (generic) (10523/12/4) 9.9% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2) 7.6% (.EXE) Win16 NE executable (generic) (5038/12/1) 6.8% (.EXE) Win32 Executable (generic) (4505/5/1) |
+ Avast: clean
- Avira: TR/FileCoder.nbrdy
- Bitdefender: Gen:Variant.Ransom.Maui.2
- Clamav: Win.Ransomware.Maui-9956167-0
- Comodo: Malware
- Drweb: Trojan.Encoder.35555
- Eset: Win32/Filecoder.OLU
- Fsecure: Trojan.TR/FileCoder.nbrdy
- Kaspersky: HEUR:Trojan-Ransom.Win32.Generic
- Mcafee: RDN/Ransom
+ Sophos: clean
- Symantec: Trojan.Gen.2
+ Trendmicro: clean
- Windefender: Ransom:Win32/Maui.A