General

  • Target

    8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9

  • Size

    259KB

  • Sample

    240611-ast3eawgrc

  • MD5

    c42521bcb6599ccb6d73f592e4ba6b73

  • SHA1

    4f8e686d03c0e5af46cbf382a186ccf0f606a100

  • SHA256

    8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9

  • SHA512

    e7c3d00bbe77ef52888e0377818d7d5c4e3c315b94930f3e141a47e81519c3e57028c73cf7170bd67f80354796e32af4b64eec371ad4c0ebac40ee2c705ea9a4

  • SSDEEP

    3072:fnymCAIuZAIuYSMjoqtMHfhflixizfAIuZAIuYSMjoqtMHfhflixiL:KmCAIuZAIuDMVtM/xfAIuZAIuDMVtM/V

Score
10/10

Malware Config

Targets

    • Target

      8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9

    • Size

      259KB

    • MD5

      c42521bcb6599ccb6d73f592e4ba6b73

    • SHA1

      4f8e686d03c0e5af46cbf382a186ccf0f606a100

    • SHA256

      8cf1b85762a8282c98f155f987af99fc36463394f7db3146daa25d6c7f54e0c9

    • SHA512

      e7c3d00bbe77ef52888e0377818d7d5c4e3c315b94930f3e141a47e81519c3e57028c73cf7170bd67f80354796e32af4b64eec371ad4c0ebac40ee2c705ea9a4

    • SSDEEP

      3072:fnymCAIuZAIuYSMjoqtMHfhflixizfAIuZAIuYSMjoqtMHfhflixiL:KmCAIuZAIuDMVtM/xfAIuZAIuDMVtM/V

    Score
    9/10
    • Renames multiple (2845) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks