General

  • Target

    f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314

  • Size

    84KB

  • Sample

    240620-f6lk3s1flb

  • MD5

    4884d74ae3f0da99e68cd973b922348b

  • SHA1

    4ce36f83dd2104d2cdbc8db7729f6fb801f71faa

  • SHA256

    f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314

  • SHA512

    659865e68c6f8328dff6587b3afb8da7de4b78ecff2f92c99705fd5be639f0fbb4cdfad5a629256b53b6a926a728e4f3d2f9f0fe98230edeb9b0033e52a7cffc

  • SSDEEP

    768:W7BlpNLpARFbhblkYlkuvIYFds7BlpNLpARFbhblkYlkuvIYFdY:W7ZNLpApCZuvIYXs7ZNLpApCZuvIYXY

Score
9/10

Malware Config

Targets

    • Target

      f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314

    • Size

      84KB

    • MD5

      4884d74ae3f0da99e68cd973b922348b

    • SHA1

      4ce36f83dd2104d2cdbc8db7729f6fb801f71faa

    • SHA256

      f53065298462dc770d6b9c6cb283e3d17e6a2f2e20396b7ab4092bf840685314

    • SHA512

      659865e68c6f8328dff6587b3afb8da7de4b78ecff2f92c99705fd5be639f0fbb4cdfad5a629256b53b6a926a728e4f3d2f9f0fe98230edeb9b0033e52a7cffc

    • SSDEEP

      768:W7BlpNLpARFbhblkYlkuvIYFds7BlpNLpARFbhblkYlkuvIYFdY:W7ZNLpApCZuvIYXs7ZNLpApCZuvIYXY

    Score
    9/10
    • Renames multiple (4887) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks