General

  • Target

    6dd3fc7399a1a431d012a4baac21da64941a3ddb63d9495ab380058f4e825c32N

  • Size

    88KB

  • Sample

    241105-t14rcsvalh

  • MD5

    db81878d1b482bf915fbb04ef2058dc0

  • SHA1

    4a3271072c89684d0bfc6cffb36c6f94959c80e7

  • SHA256

    6dd3fc7399a1a431d012a4baac21da64941a3ddb63d9495ab380058f4e825c32

  • SHA512

    67f38fa694592411bc687bc964feff3e026ac43561647cbc4eb01165735f1d899512ebbaa62b5b51f3281e574720364613c437cf8ad12984d8568ca70cc3ebec

  • SSDEEP

    1536:CTW7JJ7TPUnWQ+w+DgrC35rtLgnTVoAUZY/ECGn6cmi88:hzUyVD9InTVsZYFG6cZH

Malware Config

Targets

    • Target

      6dd3fc7399a1a431d012a4baac21da64941a3ddb63d9495ab380058f4e825c32N

    • Size

      88KB

    • MD5

      db81878d1b482bf915fbb04ef2058dc0

    • SHA1

      4a3271072c89684d0bfc6cffb36c6f94959c80e7

    • SHA256

      6dd3fc7399a1a431d012a4baac21da64941a3ddb63d9495ab380058f4e825c32

    • SHA512

      67f38fa694592411bc687bc964feff3e026ac43561647cbc4eb01165735f1d899512ebbaa62b5b51f3281e574720364613c437cf8ad12984d8568ca70cc3ebec

    • SSDEEP

      1536:CTW7JJ7TPUnWQ+w+DgrC35rtLgnTVoAUZY/ECGn6cmi88:hzUyVD9InTVsZYFG6cZH

    • Renames multiple (3058) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks