General

  • Target

    97d09791517d2dcf4ca5f19a51d3290adddd6235d67fade88ecba9fad527595c

  • Size

    194KB

  • Sample

    240611-a932msxene

  • MD5

    3548fe17242372634d3da18b8a6e3af7

  • SHA1

    9488cd8e933dffb70878d742aebaee24547b06f3

  • SHA256

    97d09791517d2dcf4ca5f19a51d3290adddd6235d67fade88ecba9fad527595c

  • SHA512

    0ac2ccd1467158b9a12c2289f65cf2495d19d985a375d50664dda559b1e189f556c92f72b002706b94ab27bfced703aa0d55603aeea217a9a0f78be2611ba5cd

  • SSDEEP

    3072:6rWpcOPxPke+e3fFpsJOfFpsJbgECrWpcOPxPke+e3fFpsJOfFpsJbgED:tFPxPke+eIlFPxPke+eID

Score
9/10

Malware Config

Targets

    • Target

      97d09791517d2dcf4ca5f19a51d3290adddd6235d67fade88ecba9fad527595c

    • Size

      194KB

    • MD5

      3548fe17242372634d3da18b8a6e3af7

    • SHA1

      9488cd8e933dffb70878d742aebaee24547b06f3

    • SHA256

      97d09791517d2dcf4ca5f19a51d3290adddd6235d67fade88ecba9fad527595c

    • SHA512

      0ac2ccd1467158b9a12c2289f65cf2495d19d985a375d50664dda559b1e189f556c92f72b002706b94ab27bfced703aa0d55603aeea217a9a0f78be2611ba5cd

    • SSDEEP

      3072:6rWpcOPxPke+e3fFpsJOfFpsJbgECrWpcOPxPke+e3fFpsJOfFpsJbgED:tFPxPke+eIlFPxPke+eID

    Score
    9/10
    • Renames multiple (4057) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks