General

  • Target

    fa9f5c38fc05b57dd4a9220633b4a1301bbd8025c36dd41f2241934420cb58baN

  • Size

    27KB

  • Sample

    241016-xwl8as1clm

  • MD5

    a1551fbaeb0b9146dfa23ffbe0ef2960

  • SHA1

    5346e69921bcde2c1e7d4b662d3f05806aa9a96e

  • SHA256

    fa9f5c38fc05b57dd4a9220633b4a1301bbd8025c36dd41f2241934420cb58ba

  • SHA512

    4af3cedf11ff3e000bc5c552798837f21dcd1e576cebf57b46ec370c223fab47ffad82448f6a3877e2559f21784b8c2fde9ccb608d9e7c1efccba1862ccb134c

  • SSDEEP

    384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9qQA/9n:kBT37CPKKdJJ1EXBwzEXBwdcMcI9Y9n

Malware Config

Targets

    • Target

      fa9f5c38fc05b57dd4a9220633b4a1301bbd8025c36dd41f2241934420cb58baN

    • Size

      27KB

    • MD5

      a1551fbaeb0b9146dfa23ffbe0ef2960

    • SHA1

      5346e69921bcde2c1e7d4b662d3f05806aa9a96e

    • SHA256

      fa9f5c38fc05b57dd4a9220633b4a1301bbd8025c36dd41f2241934420cb58ba

    • SHA512

      4af3cedf11ff3e000bc5c552798837f21dcd1e576cebf57b46ec370c223fab47ffad82448f6a3877e2559f21784b8c2fde9ccb608d9e7c1efccba1862ccb134c

    • SSDEEP

      384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9qQA/9n:kBT37CPKKdJJ1EXBwzEXBwdcMcI9Y9n

    • Renames multiple (3233) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks