General

  • Target

    4937d00d8fc58468d220e3863ad2f71693a7f4c44844f9ae8a47d444348225a8N

  • Size

    71KB

  • Sample

    241016-va38kszfpf

  • MD5

    28a05911a04dfecdd71456f9a07e1f10

  • SHA1

    31833c7d01a4d6e98c6875339ff54d7dba897fd1

  • SHA256

    4937d00d8fc58468d220e3863ad2f71693a7f4c44844f9ae8a47d444348225a8

  • SHA512

    1e48d0023dba02b16386fb3a50dc14f63c8cfc3f1a96fbcd3a26335ea1998b4c41e564fd52ec9029ab29f14047d4758cc0c82f956761f9c55ab9154ea0ec6649

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7T3cFMOu/h6HSKX/8KX/FdyGdy7:fny1bcHo

Malware Config

Targets

    • Target

      4937d00d8fc58468d220e3863ad2f71693a7f4c44844f9ae8a47d444348225a8N

    • Size

      71KB

    • MD5

      28a05911a04dfecdd71456f9a07e1f10

    • SHA1

      31833c7d01a4d6e98c6875339ff54d7dba897fd1

    • SHA256

      4937d00d8fc58468d220e3863ad2f71693a7f4c44844f9ae8a47d444348225a8

    • SHA512

      1e48d0023dba02b16386fb3a50dc14f63c8cfc3f1a96fbcd3a26335ea1998b4c41e564fd52ec9029ab29f14047d4758cc0c82f956761f9c55ab9154ea0ec6649

    • SSDEEP

      1536:V7Zf/FAxTWoJJ7T3cFMOu/h6HSKX/8KX/FdyGdy7:fny1bcHo

    • Renames multiple (3489) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks