General

  • Target

    10e66b5b3ccc062a26c3c5bc341773c93c85f781710aa67371639ba837a2c68d

  • Size

    158KB

  • Sample

    241005-xd8ctayhjk

  • MD5

    843671ba0204059856cb653de1d8291a

  • SHA1

    87ee9c8a217040049d5bce95508dd671f2d5da9d

  • SHA256

    10e66b5b3ccc062a26c3c5bc341773c93c85f781710aa67371639ba837a2c68d

  • SHA512

    d10f544f5543e604da74bef287a03eaf4d7b9cf84ed5452618b5340d1def905b58e196f7efdb4d3d4be9cef16dd36420a68f790ed0038ca085eb4e6ebaaedc65

  • SSDEEP

    3072:6e7WpMgLOiLOJl2lee7WpMgLOiLOJl2lludu3:RqKgLOiLOJ0XqKgLOiLOJ0zudu3

Score
9/10

Malware Config

Targets

    • Target

      10e66b5b3ccc062a26c3c5bc341773c93c85f781710aa67371639ba837a2c68d

    • Size

      158KB

    • MD5

      843671ba0204059856cb653de1d8291a

    • SHA1

      87ee9c8a217040049d5bce95508dd671f2d5da9d

    • SHA256

      10e66b5b3ccc062a26c3c5bc341773c93c85f781710aa67371639ba837a2c68d

    • SHA512

      d10f544f5543e604da74bef287a03eaf4d7b9cf84ed5452618b5340d1def905b58e196f7efdb4d3d4be9cef16dd36420a68f790ed0038ca085eb4e6ebaaedc65

    • SSDEEP

      3072:6e7WpMgLOiLOJl2lee7WpMgLOiLOJl2lludu3:RqKgLOiLOJ0XqKgLOiLOJ0zudu3

    Score
    9/10
    • Renames multiple (4237) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks