General

  • Target

    e19fa4e9a6e6c72a76f8be73fc9d696ed985d385f050ae8b85ff8990217b91a2

  • Size

    139KB

  • Sample

    240617-dstnes1hje

  • MD5

    e90631d08f9ceacc47d621123ddd59f2

  • SHA1

    d3ed548729c43c3104198f9400e89b0e84d276bd

  • SHA256

    e19fa4e9a6e6c72a76f8be73fc9d696ed985d385f050ae8b85ff8990217b91a2

  • SHA512

    878243f8663fb3100b8abdfcc37314d296be3a01b3632c3afbde1389a28d843ae612cb882d65b5a1adc907fd335e4e1964d71d34abbfff4f9487fad373bfeffc

  • SSDEEP

    1536:a7ZyqaFAlsr1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdS6:enaym3AIuZAIuYSMjoqtMHfhfA

Score
10/10

Malware Config

Targets

    • Target

      e19fa4e9a6e6c72a76f8be73fc9d696ed985d385f050ae8b85ff8990217b91a2

    • Size

      139KB

    • MD5

      e90631d08f9ceacc47d621123ddd59f2

    • SHA1

      d3ed548729c43c3104198f9400e89b0e84d276bd

    • SHA256

      e19fa4e9a6e6c72a76f8be73fc9d696ed985d385f050ae8b85ff8990217b91a2

    • SHA512

      878243f8663fb3100b8abdfcc37314d296be3a01b3632c3afbde1389a28d843ae612cb882d65b5a1adc907fd335e4e1964d71d34abbfff4f9487fad373bfeffc

    • SSDEEP

      1536:a7ZyqaFAlsr1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdS6:enaym3AIuZAIuYSMjoqtMHfhfA

    Score
    9/10
    • Renames multiple (3384) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks