General

  • Target

    6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111

  • Size

    1.1MB

  • Sample

    240614-16gbksyame

  • MD5

    e92147bae2ba54b73a4d8dd7bd92716d

  • SHA1

    da42cbd2cc8aeee7985a2fc6f8e80018ea47796c

  • SHA256

    6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111

  • SHA512

    6c0e2a450b691eeb887b41b909a90fdf3ea333829d0df0844be5a188e47651afb231331075a6609012869bab4c780e4e80d70c66e82d14582345a6a8b7ff1512

  • SSDEEP

    12288:VQtnyhwRgTaUBBYK+7bghKlPbCEorrQEJ4J:VInySRglBYK+7bghKlGESC

Score
10/10

Malware Config

Targets

    • Target

      6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111

    • Size

      1.1MB

    • MD5

      e92147bae2ba54b73a4d8dd7bd92716d

    • SHA1

      da42cbd2cc8aeee7985a2fc6f8e80018ea47796c

    • SHA256

      6631dcf40469bf3955abb6a2c6f4798189b933d904d453471b940b90f37fd111

    • SHA512

      6c0e2a450b691eeb887b41b909a90fdf3ea333829d0df0844be5a188e47651afb231331075a6609012869bab4c780e4e80d70c66e82d14582345a6a8b7ff1512

    • SSDEEP

      12288:VQtnyhwRgTaUBBYK+7bghKlPbCEorrQEJ4J:VInySRglBYK+7bghKlGESC

    Score
    9/10
    • Renames multiple (227) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks