General

  • Target

    f04c80522eee07b08808930e67025b5fb006f94d299edd45b57dcf31d1c1e778

  • Size

    176KB

  • Sample

    240617-ef9dsaxclp

  • MD5

    be3180d83409e4870e574f674590b82c

  • SHA1

    5f20be44b3f369a93ed51506465f4bca0ff6d2f4

  • SHA256

    f04c80522eee07b08808930e67025b5fb006f94d299edd45b57dcf31d1c1e778

  • SHA512

    08172477c97917e2bb4c0913d552928f6feda7627d90ea50c14e186f5a9a0bb85ec4cb46efa5b34258e90a24b853ef6a79e12481a3e8df2343f8c778aa1df050

  • SSDEEP

    768:W7BlpppARFbhmvjC9vjCJgm7BlpppARFbhmvjC9vjCJgV:W7ZppApmvgvi7ZppApmvgvh

Score
9/10

Malware Config

Targets

    • Target

      f04c80522eee07b08808930e67025b5fb006f94d299edd45b57dcf31d1c1e778

    • Size

      176KB

    • MD5

      be3180d83409e4870e574f674590b82c

    • SHA1

      5f20be44b3f369a93ed51506465f4bca0ff6d2f4

    • SHA256

      f04c80522eee07b08808930e67025b5fb006f94d299edd45b57dcf31d1c1e778

    • SHA512

      08172477c97917e2bb4c0913d552928f6feda7627d90ea50c14e186f5a9a0bb85ec4cb46efa5b34258e90a24b853ef6a79e12481a3e8df2343f8c778aa1df050

    • SSDEEP

      768:W7BlpppARFbhmvjC9vjCJgm7BlpppARFbhmvjC9vjCJgV:W7ZppApmvgvi7ZppApmvgvh

    Score
    9/10
    • Renames multiple (5393) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks