General

  • Target

    ed2c00bbe014b94636a1040ca4bd527e9a7a2c0d9b06f927ca5dfb68fbcd2c7b

  • Size

    122KB

  • Sample

    240525-f9jkwsga43

  • MD5

    0d2b3468041afbadcc6e24a647532600

  • SHA1

    5a6a977f7e97749f74b39241e574300c0fb8c6ba

  • SHA256

    ed2c00bbe014b94636a1040ca4bd527e9a7a2c0d9b06f927ca5dfb68fbcd2c7b

  • SHA512

    c76e80ebe44ada63b3b58bf36a29c1e6fb76a8d3d54ea88032e3cee75203a74b63020f6ed5562a0a3236dfdbee706b183c1da2def5aa62f3223bbc306f45b911

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCB:+nymCAIuZAIuYSMjoqtMHfhfk

Score
10/10

Malware Config

Targets

    • Target

      ed2c00bbe014b94636a1040ca4bd527e9a7a2c0d9b06f927ca5dfb68fbcd2c7b

    • Size

      122KB

    • MD5

      0d2b3468041afbadcc6e24a647532600

    • SHA1

      5a6a977f7e97749f74b39241e574300c0fb8c6ba

    • SHA256

      ed2c00bbe014b94636a1040ca4bd527e9a7a2c0d9b06f927ca5dfb68fbcd2c7b

    • SHA512

      c76e80ebe44ada63b3b58bf36a29c1e6fb76a8d3d54ea88032e3cee75203a74b63020f6ed5562a0a3236dfdbee706b183c1da2def5aa62f3223bbc306f45b911

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCB:+nymCAIuZAIuYSMjoqtMHfhfk

    Score
    9/10
    • Renames multiple (3454) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks