General

  • Target

    2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039

  • Size

    34KB

  • Sample

    240614-yqd56stdqh

  • MD5

    17e18fe73a160fefd820bb56591ada9e

  • SHA1

    66834f8e2b7390ebdbdeed793bf0ce1b6ca01d28

  • SHA256

    2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039

  • SHA512

    b30e18906638a44d9819d30d995446f9f212ee8a6910581544b77a9e7fb79d3bc592e94c10d9ed5a55222b87359fbb9523e45ca6aa7713ce7a653737d62157c8

  • SSDEEP

    384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjbKeKr:V7Blpf/FAK65euBT37CPKK0SjbKeKr

Score
10/10

Malware Config

Targets

    • Target

      2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039

    • Size

      34KB

    • MD5

      17e18fe73a160fefd820bb56591ada9e

    • SHA1

      66834f8e2b7390ebdbdeed793bf0ce1b6ca01d28

    • SHA256

      2b95ea62d22b70b5771f25369dded7a5607698df9c0e361b58814ca8f2f56039

    • SHA512

      b30e18906638a44d9819d30d995446f9f212ee8a6910581544b77a9e7fb79d3bc592e94c10d9ed5a55222b87359fbb9523e45ca6aa7713ce7a653737d62157c8

    • SSDEEP

      384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjbKeKr:V7Blpf/FAK65euBT37CPKK0SjbKeKr

    Score
    9/10
    • Renames multiple (4136) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks