General

  • Target

    f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN

  • Size

    114KB

  • Sample

    241006-h1y1bsyhre

  • MD5

    b4e8c62a27b1df2856bc2f980d79dca0

  • SHA1

    3b1c1a475111d08fa427df06c2ff7e6198e455a2

  • SHA256

    f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febca

  • SHA512

    66040ad3863d5fa61ca06c1579cf32b80d9ebc0662d8f0e3dfb88198191ba0b1ce994dcae42fcc2362892119821bf3c5597a460bf09a58a0fa8d363bcec1592d

  • SSDEEP

    768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7v7BlpQpARFbhvEXBwzEXBwLtAc7Fc7hzQM:/7ZQpApHov7ZQpApHohzQzI

Score
9/10

Malware Config

Targets

    • Target

      f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febcaN

    • Size

      114KB

    • MD5

      b4e8c62a27b1df2856bc2f980d79dca0

    • SHA1

      3b1c1a475111d08fa427df06c2ff7e6198e455a2

    • SHA256

      f50cf20c20dd581bbe4929228474bcde37e281e6e8d76cabeded64f9e66febca

    • SHA512

      66040ad3863d5fa61ca06c1579cf32b80d9ebc0662d8f0e3dfb88198191ba0b1ce994dcae42fcc2362892119821bf3c5597a460bf09a58a0fa8d363bcec1592d

    • SSDEEP

      768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7v7BlpQpARFbhvEXBwzEXBwLtAc7Fc7hzQM:/7ZQpApHov7ZQpApHohzQzI

    Score
    9/10
    • Renames multiple (4376) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks