General

  • Target

    1822d94b828ff8ef9c0080b650af5513c04b3af877d352b03e95ecbf85258d39N

  • Size

    85KB

  • Sample

    241005-xjn65athld

  • MD5

    c1529628d4bd608c2207b32f3a3b39b0

  • SHA1

    c4602e8caacf8741a7eba41c33b9af4e391c569c

  • SHA256

    1822d94b828ff8ef9c0080b650af5513c04b3af877d352b03e95ecbf85258d39

  • SHA512

    f2fdfc020a0c8d83534f010c7f6c5823c7301b8b84626f0aff1374c29c6454ce0fea208af595b4f8f8922af848eb74536ab34fc3205a91dfa11f72b3e0c6442f

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTNyQY/TW7JJZENTNyQYHi9:fny1tEFtEx

Malware Config

Targets

    • Target

      1822d94b828ff8ef9c0080b650af5513c04b3af877d352b03e95ecbf85258d39N

    • Size

      85KB

    • MD5

      c1529628d4bd608c2207b32f3a3b39b0

    • SHA1

      c4602e8caacf8741a7eba41c33b9af4e391c569c

    • SHA256

      1822d94b828ff8ef9c0080b650af5513c04b3af877d352b03e95ecbf85258d39

    • SHA512

      f2fdfc020a0c8d83534f010c7f6c5823c7301b8b84626f0aff1374c29c6454ce0fea208af595b4f8f8922af848eb74536ab34fc3205a91dfa11f72b3e0c6442f

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTNyQY/TW7JJZENTNyQYHi9:fny1tEFtEx

    • Renames multiple (3200) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks