General

  • Target

    4f02b74d5054301368d85b7486b9c4920a8188d316a1ff0c8d5432e076add1d1N

  • Size

    165KB

  • Sample

    241006-m219aszgkq

  • MD5

    3a8dd7046e41bbeffab8b804059b93e0

  • SHA1

    9c38218c8417d675c744087de0b78a5560e2e522

  • SHA256

    4f02b74d5054301368d85b7486b9c4920a8188d316a1ff0c8d5432e076add1d1

  • SHA512

    c3884338d4e33ceac151e51ba77dc4b7995d88882d2b455d56364d841f8fc3405ddcb7ee8d610553aaef42e4f2676ec0b7b3a518bd0cc1203fd994462da3c7c6

  • SSDEEP

    3072:fnyiQSodYeHNmkDxfIyKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCou:KiQSodYeHNmEwlt5J5hwa

Malware Config

Targets

    • Target

      4f02b74d5054301368d85b7486b9c4920a8188d316a1ff0c8d5432e076add1d1N

    • Size

      165KB

    • MD5

      3a8dd7046e41bbeffab8b804059b93e0

    • SHA1

      9c38218c8417d675c744087de0b78a5560e2e522

    • SHA256

      4f02b74d5054301368d85b7486b9c4920a8188d316a1ff0c8d5432e076add1d1

    • SHA512

      c3884338d4e33ceac151e51ba77dc4b7995d88882d2b455d56364d841f8fc3405ddcb7ee8d610553aaef42e4f2676ec0b7b3a518bd0cc1203fd994462da3c7c6

    • SSDEEP

      3072:fnyiQSodYeHNmkDxfIyKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCou:KiQSodYeHNmEwlt5J5hwa

    • Renames multiple (2695) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks