General

  • Target

    bec91827817e5ee81f68fd4eb4ef45631c6a69b9bb53b1393cfc95992293e613

  • Size

    171KB

  • Sample

    240617-b6v3assgpk

  • MD5

    0db7ee128cdfc4b9308d858932f5a03e

  • SHA1

    0aa996eab9a719b04eb568c33e597b71b4b60ac2

  • SHA256

    bec91827817e5ee81f68fd4eb4ef45631c6a69b9bb53b1393cfc95992293e613

  • SHA512

    29737ec700a78209ef6b4873eecf7536b1e03974c5ed7e8f51579e4b6230a6e81e4f061b29c135c94a74b93992e94b8b2d445c34935b0996de5b686dcd975bc3

  • SSDEEP

    768:W7BlpppARFbhmvjC9vjCJgR7BlpppARFbhmvjC9vjCJgMjk:W7ZppApmvgv97ZppApmvgvp

Score
9/10

Malware Config

Targets

    • Target

      bec91827817e5ee81f68fd4eb4ef45631c6a69b9bb53b1393cfc95992293e613

    • Size

      171KB

    • MD5

      0db7ee128cdfc4b9308d858932f5a03e

    • SHA1

      0aa996eab9a719b04eb568c33e597b71b4b60ac2

    • SHA256

      bec91827817e5ee81f68fd4eb4ef45631c6a69b9bb53b1393cfc95992293e613

    • SHA512

      29737ec700a78209ef6b4873eecf7536b1e03974c5ed7e8f51579e4b6230a6e81e4f061b29c135c94a74b93992e94b8b2d445c34935b0996de5b686dcd975bc3

    • SSDEEP

      768:W7BlpppARFbhmvjC9vjCJgR7BlpppARFbhmvjC9vjCJgMjk:W7ZppApmvgv97ZppApmvgvp

    Score
    9/10
    • Renames multiple (4103) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks