General

  • Target

    9093346e94619ca1f5ad70b343fe9128c003e2fb7defdc1ab1174a88ac3bf04f

  • Size

    182KB

  • Sample

    240611-axlltsxelp

  • MD5

    6cc6d7e54d5de53587a8676113e29efb

  • SHA1

    b36ebe4cc9991e63ea630d305c4ae3a25791e1e1

  • SHA256

    9093346e94619ca1f5ad70b343fe9128c003e2fb7defdc1ab1174a88ac3bf04f

  • SHA512

    fa8d2e1cacc1f378fe546673f5a3d6798b7a69656e25da334b61dece8cf74c414d0f3de5d6cbc53e93600498c9331a1defdd27b05763206e346b96b59c956699

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaae7WpMaxeb0CYJ97lEYNR73e+eKZ0VXc:RqKvb0CYJ973e+eKZ0VWqKvb0CYJ973V

Score
9/10

Malware Config

Targets

    • Target

      9093346e94619ca1f5ad70b343fe9128c003e2fb7defdc1ab1174a88ac3bf04f

    • Size

      182KB

    • MD5

      6cc6d7e54d5de53587a8676113e29efb

    • SHA1

      b36ebe4cc9991e63ea630d305c4ae3a25791e1e1

    • SHA256

      9093346e94619ca1f5ad70b343fe9128c003e2fb7defdc1ab1174a88ac3bf04f

    • SHA512

      fa8d2e1cacc1f378fe546673f5a3d6798b7a69656e25da334b61dece8cf74c414d0f3de5d6cbc53e93600498c9331a1defdd27b05763206e346b96b59c956699

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaae7WpMaxeb0CYJ97lEYNR73e+eKZ0VXc:RqKvb0CYJ973e+eKZ0VWqKvb0CYJ973V

    Score
    9/10
    • Renames multiple (3667) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks