General

  • Target

    f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb

  • Size

    157KB

  • Sample

    240525-gk27dage2s

  • MD5

    60ddb02783fb28c092102ded523ef8a1

  • SHA1

    e82335aa9ddfe90ddc93fdd91e784c6d08ed91a1

  • SHA256

    f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb

  • SHA512

    aa1bb2bb68d55da5578dda793a75aa246c7a16cc7e57a88fb74e41a3b6ca8c8168e513e3b9fdb8eccbda3cb42c8a089251501b43192dd897b6c5f3248b9aac85

  • SSDEEP

    1536:W7ZDpApYbWj2WTWJe+e/qX+7ZDpApYbWj2WTWJe+e/qXZ1Bl:6DWpaWTWJe+elDWpaWTWJe+ekl

Score
9/10

Malware Config

Targets

    • Target

      f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb

    • Size

      157KB

    • MD5

      60ddb02783fb28c092102ded523ef8a1

    • SHA1

      e82335aa9ddfe90ddc93fdd91e784c6d08ed91a1

    • SHA256

      f3ccd6b050343f36a81ccffbf4c1f969f3fc95135d9bc550946ebdd8eb4227fb

    • SHA512

      aa1bb2bb68d55da5578dda793a75aa246c7a16cc7e57a88fb74e41a3b6ca8c8168e513e3b9fdb8eccbda3cb42c8a089251501b43192dd897b6c5f3248b9aac85

    • SSDEEP

      1536:W7ZDpApYbWj2WTWJe+e/qX+7ZDpApYbWj2WTWJe+e/qXZ1Bl:6DWpaWTWJe+elDWpaWTWJe+ekl

    Score
    9/10
    • Renames multiple (841) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks