General

  • Target

    4939ec8d8429e2df62f540810321dc00N.exe

  • Size

    104KB

  • Sample

    240905-cr8khs1epk

  • MD5

    4939ec8d8429e2df62f540810321dc00

  • SHA1

    dceda22f9e941c39fc1f3dd6371ec5a0e01ce2bc

  • SHA256

    efe0827578610670450535faf20b5aa278e82ef24e4fd08824f1f823a68bbc3f

  • SHA512

    5b6986e4e23cc3ee3fe6e11845b75b50a6bef738440921fa6040b51bd31f51d0397ce0a9719ce7e808a254bed55172ff64908e795a8d18ba6eb11d01a93306aa

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpyD3tHtS+AtS+BKT7ZppApBULcfpHLcfpyD3tHtS+AtS+BX:6pWpBwchcwD3tuKxpWpBwchcwD3tuKw

Score
9/10

Malware Config

Targets

    • Target

      4939ec8d8429e2df62f540810321dc00N.exe

    • Size

      104KB

    • MD5

      4939ec8d8429e2df62f540810321dc00

    • SHA1

      dceda22f9e941c39fc1f3dd6371ec5a0e01ce2bc

    • SHA256

      efe0827578610670450535faf20b5aa278e82ef24e4fd08824f1f823a68bbc3f

    • SHA512

      5b6986e4e23cc3ee3fe6e11845b75b50a6bef738440921fa6040b51bd31f51d0397ce0a9719ce7e808a254bed55172ff64908e795a8d18ba6eb11d01a93306aa

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpyD3tHtS+AtS+BKT7ZppApBULcfpHLcfpyD3tHtS+AtS+BX:6pWpBwchcwD3tuKxpWpBwchcwD3tuKw

    Score
    9/10
    • Renames multiple (451) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks