General

  • Target

    d920d9c09edc679b16da4421366eedc3cd52e0aa0fe53bd02cac6f273171c0bfN.exe

  • Size

    47KB

  • Sample

    241112-ejnaqatkgz

  • MD5

    aa1923b5b416c8265887c37376017652

  • SHA1

    46b0d55a3835e400ab609a77bc931b7e10a44fbf

  • SHA256

    8f21ec1b01266b86927dd8b869c3dd11a96d91714fb5257f6a09a604b3f9db52

  • SHA512

    571d6edf02c74dc1b9980dd03016345ad71907573d5d99bbf3d941fe90df8c84a279a362057895b178cf31a6400fd07f3ceb96f10704a24689a8e79900698f65

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9lNXR8hjoPqFFxcbJNox:CTW7JJ7TrNB8hjf3+VWx

Malware Config

Targets

    • Target

      d920d9c09edc679b16da4421366eedc3cd52e0aa0fe53bd02cac6f273171c0bfN.exe

    • Size

      47KB

    • MD5

      aa1923b5b416c8265887c37376017652

    • SHA1

      46b0d55a3835e400ab609a77bc931b7e10a44fbf

    • SHA256

      8f21ec1b01266b86927dd8b869c3dd11a96d91714fb5257f6a09a604b3f9db52

    • SHA512

      571d6edf02c74dc1b9980dd03016345ad71907573d5d99bbf3d941fe90df8c84a279a362057895b178cf31a6400fd07f3ceb96f10704a24689a8e79900698f65

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9lNXR8hjoPqFFxcbJNox:CTW7JJ7TrNB8hjf3+VWx

    • Renames multiple (413) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks