General

  • Target

    9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3

  • Size

    132KB

  • Sample

    240611-bf5h2sydlm

  • MD5

    447e32c766f5b73128c15d706cbede78

  • SHA1

    5c849face8fa2a0a18be3ee00fbf01f3caf028b3

  • SHA256

    9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3

  • SHA512

    3465f2e15ed115b9658da681829bb3f6fbbe4afdc9a0fa7ffee03e96a876b46b81ac179bfdad314a8869b78fff4a9ed9d322476b55505aeee071dcfd5df9e86c

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nHSTWn1++PJHJXA/OsR:fnyiQSohsUsxe+erZaQSohsUsxe+erZk

Score
10/10

Malware Config

Targets

    • Target

      9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3

    • Size

      132KB

    • MD5

      447e32c766f5b73128c15d706cbede78

    • SHA1

      5c849face8fa2a0a18be3ee00fbf01f3caf028b3

    • SHA256

      9c8dfd69e53d3190b1c3232996183ddff0df903459d07fe6aba770d9e522ffb3

    • SHA512

      3465f2e15ed115b9658da681829bb3f6fbbe4afdc9a0fa7ffee03e96a876b46b81ac179bfdad314a8869b78fff4a9ed9d322476b55505aeee071dcfd5df9e86c

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsxe+eX7n97nHSTWn1++PJHJXA/OsR:fnyiQSohsUsxe+erZaQSohsUsxe+erZk

    Score
    9/10
    • Renames multiple (3444) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks