General

  • Target

    1d6096d03402d178924704197046a83bc637ff1219b8ee594e8f78ede4a284c0

  • Size

    599KB

  • Sample

    241005-xx9pzszdkq

  • MD5

    7e3503e1ce2bb89cb0c7b99028a1b04c

  • SHA1

    7cbd84d3dd6354be28cf6188d310845f8a881af5

  • SHA256

    1d6096d03402d178924704197046a83bc637ff1219b8ee594e8f78ede4a284c0

  • SHA512

    07a3f8d3024368f724abb26325dfa303c4771a329648cc9290290e2345b06da04179b045cf74dd6b8a020b32a24f8163ec0507e12dedc59a5bea132d1fd060df

  • SSDEEP

    6144:Pnf5uKhbSnHXBMV5jdCBjtsD52dmdLqff86+jVvaYMLOen9Bp1xf2ODuYMyRIgk:vUVRMstsD5pAfujVvaYML59RIgk

Score
9/10

Malware Config

Targets

    • Target

      1d6096d03402d178924704197046a83bc637ff1219b8ee594e8f78ede4a284c0

    • Size

      599KB

    • MD5

      7e3503e1ce2bb89cb0c7b99028a1b04c

    • SHA1

      7cbd84d3dd6354be28cf6188d310845f8a881af5

    • SHA256

      1d6096d03402d178924704197046a83bc637ff1219b8ee594e8f78ede4a284c0

    • SHA512

      07a3f8d3024368f724abb26325dfa303c4771a329648cc9290290e2345b06da04179b045cf74dd6b8a020b32a24f8163ec0507e12dedc59a5bea132d1fd060df

    • SSDEEP

      6144:Pnf5uKhbSnHXBMV5jdCBjtsD52dmdLqff86+jVvaYMLOen9Bp1xf2ODuYMyRIgk:vUVRMstsD5pAfujVvaYML59RIgk

    Score
    9/10
    • Renames multiple (1197) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks