General

  • Target

    0106b08c9197460c7da79a76ed1109ee35a6e193841f19c98a7e19ed59c2be4eN

  • Size

    131KB

  • Sample

    241016-tq57fasglm

  • MD5

    351227248e95f62b4901ece1d831bc70

  • SHA1

    bb23d29cb16aa97e619265f908890cbc92603010

  • SHA256

    0106b08c9197460c7da79a76ed1109ee35a6e193841f19c98a7e19ed59c2be4e

  • SHA512

    6517eb86e9a425c3980f5122df5cc1e39b908258ef5fc7a509e15c4fb1129ba29e4d23511f56ab2086b4dc49d09938bf47619075481125a26c4d69d04ec729fe

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTBHfiPCNc8uO6zbdm:fny1tE5C8uO6zs

Malware Config

Targets

    • Target

      0106b08c9197460c7da79a76ed1109ee35a6e193841f19c98a7e19ed59c2be4eN

    • Size

      131KB

    • MD5

      351227248e95f62b4901ece1d831bc70

    • SHA1

      bb23d29cb16aa97e619265f908890cbc92603010

    • SHA256

      0106b08c9197460c7da79a76ed1109ee35a6e193841f19c98a7e19ed59c2be4e

    • SHA512

      6517eb86e9a425c3980f5122df5cc1e39b908258ef5fc7a509e15c4fb1129ba29e4d23511f56ab2086b4dc49d09938bf47619075481125a26c4d69d04ec729fe

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTBHfiPCNc8uO6zbdm:fny1tE5C8uO6zs

    • Renames multiple (2840) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks