General

  • Target

    154c863370edbb72cafc834b1a9fa5801c464bdd2285d025324ab2e03c7a7e31N

  • Size

    52KB

  • Sample

    241112-e2b1eatpat

  • MD5

    f842133a6d5df189d8ad8331bd89ece0

  • SHA1

    4b0cd9357282cc64241c38fc4366a54c2ee58e8f

  • SHA256

    154c863370edbb72cafc834b1a9fa5801c464bdd2285d025324ab2e03c7a7e31

  • SHA512

    076ce734fdac100c9a794754fb9b432822a3b11845db9eded5b80ec2309edfa0c5c33923bfc832c793d25b497b98f44dca6ecba24f44f56b1de6b62dd3677d8c

  • SSDEEP

    768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlI:CTWciVRRNRR3EBbNa

Malware Config

Targets

    • Target

      154c863370edbb72cafc834b1a9fa5801c464bdd2285d025324ab2e03c7a7e31N

    • Size

      52KB

    • MD5

      f842133a6d5df189d8ad8331bd89ece0

    • SHA1

      4b0cd9357282cc64241c38fc4366a54c2ee58e8f

    • SHA256

      154c863370edbb72cafc834b1a9fa5801c464bdd2285d025324ab2e03c7a7e31

    • SHA512

      076ce734fdac100c9a794754fb9b432822a3b11845db9eded5b80ec2309edfa0c5c33923bfc832c793d25b497b98f44dca6ecba24f44f56b1de6b62dd3677d8c

    • SSDEEP

      768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlI:CTWciVRRNRR3EBbNa

    • Renames multiple (2798) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks