General

  • Target

    5fe2469c7cdc2df310caaa6309acd1a0N.exe

  • Size

    90KB

  • Sample

    240825-lt2peszcrl

  • MD5

    5fe2469c7cdc2df310caaa6309acd1a0

  • SHA1

    9fecc5e8315ad44fe6b8d9cbea704df69a19744d

  • SHA256

    24adb5e5470fac395265a3337bc6ab90ad281c959359dd3d829d05cc3e037a1e

  • SHA512

    f85c5b5d2ede404b0a8656e907a086d31697a8283f8fb75f5cc5d74732483a4d7b76f83d0ac1abfaaf2b83a576a8fb3639669ae32770d7e47db58bc6edd61dab

  • SSDEEP

    768:W7BlpppARFbhHFoqAJwBqAJwRJofJoTkv7BlpppARFbhHFoqAJwBqAJwRJofJoTc:W7ZppApaJofJoy7ZppApaJofJoY

Score
9/10

Malware Config

Targets

    • Target

      5fe2469c7cdc2df310caaa6309acd1a0N.exe

    • Size

      90KB

    • MD5

      5fe2469c7cdc2df310caaa6309acd1a0

    • SHA1

      9fecc5e8315ad44fe6b8d9cbea704df69a19744d

    • SHA256

      24adb5e5470fac395265a3337bc6ab90ad281c959359dd3d829d05cc3e037a1e

    • SHA512

      f85c5b5d2ede404b0a8656e907a086d31697a8283f8fb75f5cc5d74732483a4d7b76f83d0ac1abfaaf2b83a576a8fb3639669ae32770d7e47db58bc6edd61dab

    • SSDEEP

      768:W7BlpppARFbhHFoqAJwBqAJwRJofJoTkv7BlpppARFbhHFoqAJwBqAJwRJofJoTc:W7ZppApaJofJoy7ZppApaJofJoY

    Score
    9/10
    • Renames multiple (4137) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks