General

  • Target

    8430ea82b0c375ccf58d17fdc90fd480N.exe

  • Size

    84KB

  • Sample

    240825-hwytrstajk

  • MD5

    8430ea82b0c375ccf58d17fdc90fd480

  • SHA1

    9006ca29937d1952e2b539607d213667902b2e1b

  • SHA256

    05ca2c69f188955ba850a077935984461c9e43cee6555e0dfa3868526c920b37

  • SHA512

    96bc595c5f7d7e2d613f2c315062f24ef0bb37c2705f314361e1260ab0ab241a719d7852d7a4ac60d5c9b03dac5a4c1c0753e66ff7ca882fcb632aae788b65f5

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7TARK1Z49dR4EDxUtM7xQIyJGYGscwvJvYTFy5UKwfxbkLzJYCm:fny1RC

Malware Config

Targets

    • Target

      8430ea82b0c375ccf58d17fdc90fd480N.exe

    • Size

      84KB

    • MD5

      8430ea82b0c375ccf58d17fdc90fd480

    • SHA1

      9006ca29937d1952e2b539607d213667902b2e1b

    • SHA256

      05ca2c69f188955ba850a077935984461c9e43cee6555e0dfa3868526c920b37

    • SHA512

      96bc595c5f7d7e2d613f2c315062f24ef0bb37c2705f314361e1260ab0ab241a719d7852d7a4ac60d5c9b03dac5a4c1c0753e66ff7ca882fcb632aae788b65f5

    • SSDEEP

      1536:V7Zf/FAxTWoJJ7TARK1Z49dR4EDxUtM7xQIyJGYGscwvJvYTFy5UKwfxbkLzJYCm:fny1RC

    • Renames multiple (2848) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks