General

  • Target

    bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155

  • Size

    247KB

  • Sample

    240515-cwgycsdc46

  • MD5

    68a8ec012cb2be6df118f39b0f8b7e59

  • SHA1

    ce12654b249b97d72f868130a4cb9fae68b65947

  • SHA256

    bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155

  • SHA512

    64e6907028c32bcfbcd26ad12a327f1ae5e5bf80a8d21905f96a19c71b9ce545a4293ac3c68a923d4697f6218af7691ac521f046dd81ca0c7c5deecac937407e

  • SSDEEP

    3072:6QWpkzlfFpsJOfFpsJ+n6j+QWpkzlfFpsJOfFpsJ+n6j7:Wo5

Score
9/10

Malware Config

Targets

    • Target

      bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155

    • Size

      247KB

    • MD5

      68a8ec012cb2be6df118f39b0f8b7e59

    • SHA1

      ce12654b249b97d72f868130a4cb9fae68b65947

    • SHA256

      bbe05e8b2f1cc237d0025d5ae1f2a8e7a8e6432d2784c2a237886b6e1dedf155

    • SHA512

      64e6907028c32bcfbcd26ad12a327f1ae5e5bf80a8d21905f96a19c71b9ce545a4293ac3c68a923d4697f6218af7691ac521f046dd81ca0c7c5deecac937407e

    • SSDEEP

      3072:6QWpkzlfFpsJOfFpsJ+n6j+QWpkzlfFpsJOfFpsJ+n6j7:Wo5

    Score
    9/10
    • Renames multiple (3495) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks