General

  • Target

    38fc536b8320ca963c3535e57dfdccac853646efc33a535b246b1b862844ce80N

  • Size

    174KB

  • Sample

    241006-nfapwswakb

  • MD5

    6fde22b0721d398db30d655f638e06a0

  • SHA1

    1eb72d8dbc135835428055f97ca8a24af8fb51da

  • SHA256

    38fc536b8320ca963c3535e57dfdccac853646efc33a535b246b1b862844ce80

  • SHA512

    7017728a6afe367c0bf2e3af36b49cf0840392e3d7aac74df631440128f5e4b9e6c1c36d7fcea597360654447d344be8ad00da36aec796a3e1320226faddc62c

  • SSDEEP

    3072:6pWpkuK4+bE1F4c2RpWpkuK4+bE1F4c2f:PCeFe+CeFef

Score
9/10

Malware Config

Targets

    • Target

      38fc536b8320ca963c3535e57dfdccac853646efc33a535b246b1b862844ce80N

    • Size

      174KB

    • MD5

      6fde22b0721d398db30d655f638e06a0

    • SHA1

      1eb72d8dbc135835428055f97ca8a24af8fb51da

    • SHA256

      38fc536b8320ca963c3535e57dfdccac853646efc33a535b246b1b862844ce80

    • SHA512

      7017728a6afe367c0bf2e3af36b49cf0840392e3d7aac74df631440128f5e4b9e6c1c36d7fcea597360654447d344be8ad00da36aec796a3e1320226faddc62c

    • SSDEEP

      3072:6pWpkuK4+bE1F4c2RpWpkuK4+bE1F4c2f:PCeFe+CeFef

    Score
    9/10
    • Renames multiple (902) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks