General

  • Target

    d16f41bc5c9ef5e896906656c0f082ed6ea5e215b0b78ee1788261efafbfd3ea

  • Size

    98KB

  • Sample

    240611-d3csnatbpr

  • MD5

    c29211674021ac458a04747f8e3df826

  • SHA1

    c0d9f851dba8f00e74270ef7a9cd99f28cf9323a

  • SHA256

    d16f41bc5c9ef5e896906656c0f082ed6ea5e215b0b78ee1788261efafbfd3ea

  • SHA512

    4041ccc51da59929280a9188d2d7b1ed037f93b446c2de2bbff763969e0300011ddf2580325e0aab29e4e45950c273d94456d20d6acf187781ba0f9dfa964b0b

  • SSDEEP

    3072:9QWpze+eJfFpsJOfFpsJHQWpze+eJfFpsJOfFpsJw:Lpe+eOpe+eZ

Score
9/10

Malware Config

Targets

    • Target

      d16f41bc5c9ef5e896906656c0f082ed6ea5e215b0b78ee1788261efafbfd3ea

    • Size

      98KB

    • MD5

      c29211674021ac458a04747f8e3df826

    • SHA1

      c0d9f851dba8f00e74270ef7a9cd99f28cf9323a

    • SHA256

      d16f41bc5c9ef5e896906656c0f082ed6ea5e215b0b78ee1788261efafbfd3ea

    • SHA512

      4041ccc51da59929280a9188d2d7b1ed037f93b446c2de2bbff763969e0300011ddf2580325e0aab29e4e45950c273d94456d20d6acf187781ba0f9dfa964b0b

    • SSDEEP

      3072:9QWpze+eJfFpsJOfFpsJHQWpze+eJfFpsJOfFpsJw:Lpe+eOpe+eZ

    Score
    9/10
    • Renames multiple (5253) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks