General

  • Target

    b8bbb714eee4d4d87ba0dc3ca548121f4b6c3a03f98402418dd51b0d23b9d57fN

  • Size

    48KB

  • Sample

    241018-gjygss1arb

  • MD5

    911c1190aa7ed3e6da463fc3ee4a5570

  • SHA1

    4adcd2364452ed17edf871384770810050a58954

  • SHA256

    b8bbb714eee4d4d87ba0dc3ca548121f4b6c3a03f98402418dd51b0d23b9d57f

  • SHA512

    868d8fcb9c25827ff0ae851b4bd258f987c7558971afc96b93e51f1062b740661e4e24b6c9b0fa80b9a34c99d7308b48f32f91db831832f584f61f17459210c7

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9xj+N1J3DCl4N1J3DClal3l7lcl7lU:CTW7JJ7T/jQlila

Malware Config

Targets

    • Target

      b8bbb714eee4d4d87ba0dc3ca548121f4b6c3a03f98402418dd51b0d23b9d57fN

    • Size

      48KB

    • MD5

      911c1190aa7ed3e6da463fc3ee4a5570

    • SHA1

      4adcd2364452ed17edf871384770810050a58954

    • SHA256

      b8bbb714eee4d4d87ba0dc3ca548121f4b6c3a03f98402418dd51b0d23b9d57f

    • SHA512

      868d8fcb9c25827ff0ae851b4bd258f987c7558971afc96b93e51f1062b740661e4e24b6c9b0fa80b9a34c99d7308b48f32f91db831832f584f61f17459210c7

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9xj+N1J3DCl4N1J3DClal3l7lcl7lU:CTW7JJ7T/jQlila

    • Renames multiple (3155) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks