General

  • Target

    skibibibib_encryptix.exe

  • Size

    225KB

  • Sample

    241016-cxcp2ascrq

  • MD5

    4843b55a53cbe6ecd38c9dbf3c734c33

  • SHA1

    9423e81a74a728648ddad31b6b1fa98ab3e5dc03

  • SHA256

    79b6e59cd18212a96a8095b0c8a492991c058ad5abc86d4b9aa663c6deadd6be

  • SHA512

    5ad9ef5570a5aebca3e33de959a0604f26d1a08650d3d6e0c5fcdc2489fbbd16085f01b55337ca43d4655722a9b41b967084dbbc871766cb903d4b18d2d275d1

  • SSDEEP

    3072:+gMLb9kzE+/eubYNcP1mVQigTtxYylZCI0kOP+bzxocaTrulz5wTrfOTFG6B8WcB:+5LBkWzNiQVQhjl6Az0Sl82W

Malware Config

Targets

    • Target

      skibibibib_encryptix.exe

    • Size

      225KB

    • MD5

      4843b55a53cbe6ecd38c9dbf3c734c33

    • SHA1

      9423e81a74a728648ddad31b6b1fa98ab3e5dc03

    • SHA256

      79b6e59cd18212a96a8095b0c8a492991c058ad5abc86d4b9aa663c6deadd6be

    • SHA512

      5ad9ef5570a5aebca3e33de959a0604f26d1a08650d3d6e0c5fcdc2489fbbd16085f01b55337ca43d4655722a9b41b967084dbbc871766cb903d4b18d2d275d1

    • SSDEEP

      3072:+gMLb9kzE+/eubYNcP1mVQigTtxYylZCI0kOP+bzxocaTrulz5wTrfOTFG6B8WcB:+5LBkWzNiQVQhjl6Az0Sl82W

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks