General

  • Target

    ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3

  • Size

    67KB

  • Sample

    240620-fv1kvsvfln

  • MD5

    6d1f629720165e61d21e394653fefaed

  • SHA1

    01f148c8d779306b4fb784d5978b23b0413b74f8

  • SHA256

    ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3

  • SHA512

    716dbb488bb5332b8a1b18f615d60c394cff91980016a9f3a89eb4b7aebf1db97dacbaf64a50093f39c732b3e85842c7669c409e473801ed50199979063d1e5d

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8E:fnyiQSoj

Score
10/10

Malware Config

Targets

    • Target

      ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3

    • Size

      67KB

    • MD5

      6d1f629720165e61d21e394653fefaed

    • SHA1

      01f148c8d779306b4fb784d5978b23b0413b74f8

    • SHA256

      ef598be8698cfbc9e5847794c16551474eabb2d20a5e6a9e70a1730e83c2eff3

    • SHA512

      716dbb488bb5332b8a1b18f615d60c394cff91980016a9f3a89eb4b7aebf1db97dacbaf64a50093f39c732b3e85842c7669c409e473801ed50199979063d1e5d

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8E:fnyiQSoj

    Score
    9/10
    • Renames multiple (3489) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks