General

  • Target

    571d928c933e32c4e95f5830ca7cb5c3b7ec761ea875c82b50925ff324a2b090N

  • Size

    1.3MB

  • Sample

    241106-ddsgtatgql

  • MD5

    9aedb3a9bb90b5a5da256354e6e80020

  • SHA1

    d3770e62d73174114be2513d6bee40fa140d150e

  • SHA256

    571d928c933e32c4e95f5830ca7cb5c3b7ec761ea875c82b50925ff324a2b090

  • SHA512

    2f30cf809e41a49cf10d39418b05bf6896a13c286810cc27c2788342d903110daaf17d5f89e53d04e5a4cd982d97917ee0a466274575acabf708918051f75e48

  • SSDEEP

    24576:TndFZOhc6OeoOCNl/e/+RnZ0CMPo22WnpasLTlntZZW8L6:TZOhlloTNeeZjCoXWFtZZW8m

Malware Config

Targets

    • Target

      571d928c933e32c4e95f5830ca7cb5c3b7ec761ea875c82b50925ff324a2b090N

    • Size

      1.3MB

    • MD5

      9aedb3a9bb90b5a5da256354e6e80020

    • SHA1

      d3770e62d73174114be2513d6bee40fa140d150e

    • SHA256

      571d928c933e32c4e95f5830ca7cb5c3b7ec761ea875c82b50925ff324a2b090

    • SHA512

      2f30cf809e41a49cf10d39418b05bf6896a13c286810cc27c2788342d903110daaf17d5f89e53d04e5a4cd982d97917ee0a466274575acabf708918051f75e48

    • SSDEEP

      24576:TndFZOhc6OeoOCNl/e/+RnZ0CMPo22WnpasLTlntZZW8L6:TZOhlloTNeeZjCoXWFtZZW8m

    • Renames multiple (341) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks