General

  • Target

    b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965

  • Size

    67KB

  • Sample

    240614-djllfswhjr

  • MD5

    e0f7999496d2ca2dc5608153c7055a17

  • SHA1

    4fc637672288c0f9784e05dc6952395215199136

  • SHA256

    b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965

  • SHA512

    68aae32375d2a464b75376dd61dbc4b852908dc9b207a5674a4c0e0da2fe0207950ac5cd33ae4e8668327b74ecf067bc907ce1c95ad4fff09ad55515e7b7f792

  • SSDEEP

    384:GBt7Br5xjL9AgA71FbhvuNBNrpNBt7Br5xjL9AgA71FbhvuNBNrp+92:W7BlpppARFbh2pd7BlpppARFbh2pL

Score
9/10

Malware Config

Targets

    • Target

      b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965

    • Size

      67KB

    • MD5

      e0f7999496d2ca2dc5608153c7055a17

    • SHA1

      4fc637672288c0f9784e05dc6952395215199136

    • SHA256

      b4f77f786205133c5298ba663448eaf8a8f053f571b46b97ff384b4b6614e965

    • SHA512

      68aae32375d2a464b75376dd61dbc4b852908dc9b207a5674a4c0e0da2fe0207950ac5cd33ae4e8668327b74ecf067bc907ce1c95ad4fff09ad55515e7b7f792

    • SSDEEP

      384:GBt7Br5xjL9AgA71FbhvuNBNrpNBt7Br5xjL9AgA71FbhvuNBNrp+92:W7BlpppARFbh2pd7BlpppARFbh2pL

    Score
    9/10
    • Renames multiple (4541) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks