General

  • Target

    5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c

  • Size

    2.5MB

  • Sample

    240610-2bjc5ashnd

  • MD5

    95b962f05e459d739fc85deb4853c746

  • SHA1

    bf8e466a33afee2ba10c22b5c02fbd0d19bc87ec

  • SHA256

    5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c

  • SHA512

    5d09d0db903768935fd66e46857ac61da99f68ddf8449ed55d3135fc21a7a6028887015745b8655aa7811bbf08dccaef5779a7dde69ca0ecc4ce0dfac6e2fb8f

  • SSDEEP

    49152:V6cWKleSzSlbPlUPlahnkGHDZrG3uhfZqxe:UcjleSzSlbPlUPlahnkGjZrwoP

Score
10/10

Malware Config

Targets

    • Target

      5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c

    • Size

      2.5MB

    • MD5

      95b962f05e459d739fc85deb4853c746

    • SHA1

      bf8e466a33afee2ba10c22b5c02fbd0d19bc87ec

    • SHA256

      5a28f289eb806a36b70044ebaa03ac8cd6a07b75143716bc4107369ce80eec0c

    • SHA512

      5d09d0db903768935fd66e46857ac61da99f68ddf8449ed55d3135fc21a7a6028887015745b8655aa7811bbf08dccaef5779a7dde69ca0ecc4ce0dfac6e2fb8f

    • SSDEEP

      49152:V6cWKleSzSlbPlUPlahnkGHDZrG3uhfZqxe:UcjleSzSlbPlUPlahnkGjZrwoP

    Score
    9/10
    • Renames multiple (226) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks