General

  • Target

    39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N

  • Size

    170KB

  • Sample

    241016-xtl5hsxakd

  • MD5

    aaf75d0c04032879b9f90b18ae6638b0

  • SHA1

    2d474f9f054a1b38bb90cad6abd08f51745925da

  • SHA256

    39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42

  • SHA512

    805efd638859a6cce013cb178781c71a2ee051a8cb47cd242d403e72496a751f7e8d460b3a66857c8c993803b684ff9600a54538e7a083a3bdb2d783363bd6f9

  • SSDEEP

    1536:W7ZDpApYbWjIoPyPoLzV7c6ShWfxRfxMlw7ZDpApYbWjIoPyPoLzV7c6ShWfxRfY:6DWpLf7fWlwDWpLf7fWlZ

Score
9/10

Malware Config

Targets

    • Target

      39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42N

    • Size

      170KB

    • MD5

      aaf75d0c04032879b9f90b18ae6638b0

    • SHA1

      2d474f9f054a1b38bb90cad6abd08f51745925da

    • SHA256

      39536084324f8633db6a402016fe52e45272a1d88391e43a72201aa8312f7e42

    • SHA512

      805efd638859a6cce013cb178781c71a2ee051a8cb47cd242d403e72496a751f7e8d460b3a66857c8c993803b684ff9600a54538e7a083a3bdb2d783363bd6f9

    • SSDEEP

      1536:W7ZDpApYbWjIoPyPoLzV7c6ShWfxRfxMlw7ZDpApYbWjIoPyPoLzV7c6ShWfxRfY:6DWpLf7fWlwDWpLf7fWlZ

    Score
    9/10
    • Renames multiple (3444) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks