General

  • Target

    a180f37540604490f3e4dd2678098ad1e8fcf83fd1ac4ada2d0d4f2c68b3450eN

  • Size

    681KB

  • Sample

    241019-z1dg3a1dnm

  • MD5

    a868a301c606f8c02408bb95158ec310

  • SHA1

    26ad75aa5d66e8182373a7672550f81a92063fa0

  • SHA256

    a180f37540604490f3e4dd2678098ad1e8fcf83fd1ac4ada2d0d4f2c68b3450e

  • SHA512

    9e51109c0b3d0b78e62653532991b0aaaeb6b5a0b027c8fe14fa2c3110bbd78e5c675fa84ec092785c7a84f6e268a91c8b30584fe91144dcbbbfa6ea00d3c318

  • SSDEEP

    12288:VQthsUs4L1jPPutvwfbtPX1b/koxC8VZzjMxCEtU3b4H/CSC7huEJnA5vjRDC2:VIPL1jPPutibtPX1b/koxC8VZzjMxCEv

Malware Config

Targets

    • Target

      a180f37540604490f3e4dd2678098ad1e8fcf83fd1ac4ada2d0d4f2c68b3450eN

    • Size

      681KB

    • MD5

      a868a301c606f8c02408bb95158ec310

    • SHA1

      26ad75aa5d66e8182373a7672550f81a92063fa0

    • SHA256

      a180f37540604490f3e4dd2678098ad1e8fcf83fd1ac4ada2d0d4f2c68b3450e

    • SHA512

      9e51109c0b3d0b78e62653532991b0aaaeb6b5a0b027c8fe14fa2c3110bbd78e5c675fa84ec092785c7a84f6e268a91c8b30584fe91144dcbbbfa6ea00d3c318

    • SSDEEP

      12288:VQthsUs4L1jPPutvwfbtPX1b/koxC8VZzjMxCEtU3b4H/CSC7huEJnA5vjRDC2:VIPL1jPPutibtPX1b/koxC8VZzjMxCEv

    • Renames multiple (224) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks