General

  • Target

    23b607df161083bb3ccef21e09a69db3f2d5903d1161ac23ef01149ed059e406N

  • Size

    73KB

  • Sample

    241016-tk5cyssekk

  • MD5

    8c764539a963b8c7d5088211d911a140

  • SHA1

    025636e4f500112a206a6d92eee499bcf1d5a107

  • SHA256

    23b607df161083bb3ccef21e09a69db3f2d5903d1161ac23ef01149ed059e406

  • SHA512

    d1fdedc7bba2f6571d89dbea3f5d0909192c914019d45fa0d54a8c4298497889462b81622051732c7a706aedc7141ad196f730898b48a11ae1a4e9943bfd61f8

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY51lnla:KQSox51F4

Malware Config

Targets

    • Target

      23b607df161083bb3ccef21e09a69db3f2d5903d1161ac23ef01149ed059e406N

    • Size

      73KB

    • MD5

      8c764539a963b8c7d5088211d911a140

    • SHA1

      025636e4f500112a206a6d92eee499bcf1d5a107

    • SHA256

      23b607df161083bb3ccef21e09a69db3f2d5903d1161ac23ef01149ed059e406

    • SHA512

      d1fdedc7bba2f6571d89dbea3f5d0909192c914019d45fa0d54a8c4298497889462b81622051732c7a706aedc7141ad196f730898b48a11ae1a4e9943bfd61f8

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY51lnla:KQSox51F4

    • Renames multiple (332) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks