General

  • Target

    virussign.com_98339214c74067e716cad4605ad28f40.vir

  • Size

    71KB

  • Sample

    240608-nddzjaca33

  • MD5

    98339214c74067e716cad4605ad28f40

  • SHA1

    e259be75e2e59b81f9c1a38f5dafb64063f91f76

  • SHA256

    4f6b371a18a7a9d2ae9248a680b3b4c346377001c2bc3bed7d4214cbba9128d1

  • SHA512

    54e90b0e63c6c5feadfebcb3078d7bb93a0ff3a8c94a9808c32d2f5f2c65822770e4c8e1d5a453006fd534f50bc10cfbe151eb4441e350380060fc8d63e4ae13

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q80T7:+nyiQSob

Score
9/10

Malware Config

Targets

    • Target

      virussign.com_98339214c74067e716cad4605ad28f40.vir

    • Size

      71KB

    • MD5

      98339214c74067e716cad4605ad28f40

    • SHA1

      e259be75e2e59b81f9c1a38f5dafb64063f91f76

    • SHA256

      4f6b371a18a7a9d2ae9248a680b3b4c346377001c2bc3bed7d4214cbba9128d1

    • SHA512

      54e90b0e63c6c5feadfebcb3078d7bb93a0ff3a8c94a9808c32d2f5f2c65822770e4c8e1d5a453006fd534f50bc10cfbe151eb4441e350380060fc8d63e4ae13

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q80T7:+nyiQSob

    Score
    9/10
    • Renames multiple (3726) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks