General

  • Target

    14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584

  • Size

    92KB

  • Sample

    240706-xlkxgssfng

  • MD5

    4221ab1591ca02f3f4992a0ca264dd83

  • SHA1

    df94eaf4fb355c00544f8635f556bfa412bfbe7e

  • SHA256

    14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584

  • SHA512

    3d49f5b6c60d9a44a88774ef347b6df00edb45e64e1fca2ba81592e230c8c844bb15fe399e325d69cd23ab329d0049823ebfa86109a66e7b6ba7e4a9491b1647

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpzSWu0SWuE7ZppApBULcfpHLcfpzSWu0SWuKEaEB:6pWpBwchcxSWu0SWuEpWpBwchcxSWu0a

Score
9/10

Malware Config

Targets

    • Target

      14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584

    • Size

      92KB

    • MD5

      4221ab1591ca02f3f4992a0ca264dd83

    • SHA1

      df94eaf4fb355c00544f8635f556bfa412bfbe7e

    • SHA256

      14e39b1474092bd661c96f80a4a18ebc0d1df346da302e7a9f4ca4e78a509584

    • SHA512

      3d49f5b6c60d9a44a88774ef347b6df00edb45e64e1fca2ba81592e230c8c844bb15fe399e325d69cd23ab329d0049823ebfa86109a66e7b6ba7e4a9491b1647

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpzSWu0SWuE7ZppApBULcfpHLcfpzSWu0SWuKEaEB:6pWpBwchcxSWu0SWuEpWpBwchcxSWu0a

    Score
    9/10
    • Renames multiple (977) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks