General

  • Target

    cd990fa537e494bd4487e1cc1e96f9d658c12cec368c65e75bf6c87e8d042dbc

  • Size

    70KB

  • Sample

    240616-c7vnlawfka

  • MD5

    57f449b8ddd2134cddd70cfde0f4f98b

  • SHA1

    a5f9c0634f9e6214837d98dbacc8b25367f2019b

  • SHA256

    cd990fa537e494bd4487e1cc1e96f9d658c12cec368c65e75bf6c87e8d042dbc

  • SHA512

    d53bee6f9deab9344b89d971bd5577e5caa5b39eecb0fce2b919a1b8b9516d6754c7f59913d4198757e356c51bd5834e7754d1674e606d1564ab51453c1206ab

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8C:fnyiQSoF

Score
10/10

Malware Config

Targets

    • Target

      cd990fa537e494bd4487e1cc1e96f9d658c12cec368c65e75bf6c87e8d042dbc

    • Size

      70KB

    • MD5

      57f449b8ddd2134cddd70cfde0f4f98b

    • SHA1

      a5f9c0634f9e6214837d98dbacc8b25367f2019b

    • SHA256

      cd990fa537e494bd4487e1cc1e96f9d658c12cec368c65e75bf6c87e8d042dbc

    • SHA512

      d53bee6f9deab9344b89d971bd5577e5caa5b39eecb0fce2b919a1b8b9516d6754c7f59913d4198757e356c51bd5834e7754d1674e606d1564ab51453c1206ab

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8C:fnyiQSoF

    Score
    9/10
    • Renames multiple (3684) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks