General

  • Target

    3b141e2ab002ddf293c63bed5a4c915126eb4bdd4c431209e314702d1a2fc007N

  • Size

    110KB

  • Sample

    241016-vahxmstgpm

  • MD5

    989396a8c6377ee776f504f7a84b1440

  • SHA1

    e2cf74ab7b08286d40af86dbc908016d862199ad

  • SHA256

    3b141e2ab002ddf293c63bed5a4c915126eb4bdd4c431209e314702d1a2fc007

  • SHA512

    2c0581deb36f947a3c9a1b04f918df0386a1aef12514ba8cf73cb29e94452f15653976e88c7a6b526191e00363d91b2f166adb50e52bbeb3d3d22980671238d2

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTNyoKIKMQTW7JJZENTNyoKIKMIjUvO595U:fny1tE5KIKEtE5KIK7jUvO595U

Malware Config

Targets

    • Target

      3b141e2ab002ddf293c63bed5a4c915126eb4bdd4c431209e314702d1a2fc007N

    • Size

      110KB

    • MD5

      989396a8c6377ee776f504f7a84b1440

    • SHA1

      e2cf74ab7b08286d40af86dbc908016d862199ad

    • SHA256

      3b141e2ab002ddf293c63bed5a4c915126eb4bdd4c431209e314702d1a2fc007

    • SHA512

      2c0581deb36f947a3c9a1b04f918df0386a1aef12514ba8cf73cb29e94452f15653976e88c7a6b526191e00363d91b2f166adb50e52bbeb3d3d22980671238d2

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTNyoKIKMQTW7JJZENTNyoKIKMIjUvO595U:fny1tE5KIKEtE5KIK7jUvO595U

    • Renames multiple (3433) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks