General

  • Target

    eb68cb981931a888b0c2e4cee1190c1f0662c83605cb9e0752e00d47d967fb14

  • Size

    173KB

  • Sample

    240614-gbsxcaxamd

  • MD5

    1750b1811216c8582d21ae073a735369

  • SHA1

    b8a7c1dc4c11dbbd574d20be109a760dbd5d3483

  • SHA256

    eb68cb981931a888b0c2e4cee1190c1f0662c83605cb9e0752e00d47d967fb14

  • SHA512

    acbe53d68122a3c7dde8e9d2849d9947d29edf63b03cce4f929965400630e474a5520d9dd5513e37958797b88030784ba3b12c8a4ccfc7cd16dfcc950dab31f3

  • SSDEEP

    3072:6e7WpP9oVLQthbYY9oVLQthbUrt7t2rt303Cs+wDwFe7WpP9oVLQthbYY9oVLQte:RqAiruqAirw

Score
9/10

Malware Config

Targets

    • Target

      eb68cb981931a888b0c2e4cee1190c1f0662c83605cb9e0752e00d47d967fb14

    • Size

      173KB

    • MD5

      1750b1811216c8582d21ae073a735369

    • SHA1

      b8a7c1dc4c11dbbd574d20be109a760dbd5d3483

    • SHA256

      eb68cb981931a888b0c2e4cee1190c1f0662c83605cb9e0752e00d47d967fb14

    • SHA512

      acbe53d68122a3c7dde8e9d2849d9947d29edf63b03cce4f929965400630e474a5520d9dd5513e37958797b88030784ba3b12c8a4ccfc7cd16dfcc950dab31f3

    • SSDEEP

      3072:6e7WpP9oVLQthbYY9oVLQthbUrt7t2rt303Cs+wDwFe7WpP9oVLQthbYY9oVLQte:RqAiruqAirw

    Score
    9/10
    • Renames multiple (3646) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks