General

  • Target

    5aada3050309faa15492ee48e29742780622bf71493b837ca749d4768e42c811N

  • Size

    40KB

  • Sample

    241006-nhhhhswble

  • MD5

    de844ea2b032450da689989a568fbd40

  • SHA1

    c2e2a1834e48931c35b761173afd3f09851fa064

  • SHA256

    5aada3050309faa15492ee48e29742780622bf71493b837ca749d4768e42c811

  • SHA512

    1268d15c06509fbcbc75a868084101b1e0b2c37aeb9a5e4320fbec7720a800b353460472ebab8cabcf8ea414abdf3d5d23ed0c176f744c00941adc1c812c59cb

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiOeMaLi1xceMaLi1xo:CTW7JJ7TTQoQOeMa+QeMa+E

Malware Config

Targets

    • Target

      5aada3050309faa15492ee48e29742780622bf71493b837ca749d4768e42c811N

    • Size

      40KB

    • MD5

      de844ea2b032450da689989a568fbd40

    • SHA1

      c2e2a1834e48931c35b761173afd3f09851fa064

    • SHA256

      5aada3050309faa15492ee48e29742780622bf71493b837ca749d4768e42c811

    • SHA512

      1268d15c06509fbcbc75a868084101b1e0b2c37aeb9a5e4320fbec7720a800b353460472ebab8cabcf8ea414abdf3d5d23ed0c176f744c00941adc1c812c59cb

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiOeMaLi1xceMaLi1xo:CTW7JJ7TTQoQOeMa+QeMa+E

    • Renames multiple (3788) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks