General

  • Target

    f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60

  • Size

    180KB

  • Sample

    241006-n4ad2asemm

  • MD5

    85dca3c1780db98acb92ec584b88e480

  • SHA1

    58ae397ccc97e56e354b3d480bcd12fb0b327380

  • SHA256

    f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60

  • SHA512

    badf8813a80db1506b0c9036f8fb088c752f18599176a4e9f47745ef6f31d009a3cf0b1c82725f36e7ceefb109da624d1f0f575974ba903c6841f7db35a74a4c

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZye7WpMaxeb0CYJ97lEYNR73e+eKZT:RqKvb0CYJ973e+eKZJqKvb0CYJ973e+J

Score
9/10

Malware Config

Targets

    • Target

      f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60

    • Size

      180KB

    • MD5

      85dca3c1780db98acb92ec584b88e480

    • SHA1

      58ae397ccc97e56e354b3d480bcd12fb0b327380

    • SHA256

      f353574ddcd2df779a9c28f595f71765dfb6d8f9055689a47f9aab7798c29d60

    • SHA512

      badf8813a80db1506b0c9036f8fb088c752f18599176a4e9f47745ef6f31d009a3cf0b1c82725f36e7ceefb109da624d1f0f575974ba903c6841f7db35a74a4c

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZye7WpMaxeb0CYJ97lEYNR73e+eKZT:RqKvb0CYJ973e+eKZJqKvb0CYJ973e+J

    Score
    9/10
    • Renames multiple (4490) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks