General

  • Target

    a3ca16fab5ee41e498c21ead607a2a1bf8233116bd0d6e6196e2dc02686d5ba0.exe

  • Size

    105KB

  • Sample

    241112-m2afks1dqq

  • MD5

    791dff1017790ca87bf11e6a0e0a3f4f

  • SHA1

    e378c9e1ca76f59ed37d9b42ff050d66f29ca1f5

  • SHA256

    a3ca16fab5ee41e498c21ead607a2a1bf8233116bd0d6e6196e2dc02686d5ba0

  • SHA512

    79a0f602c9fb9bf7089ecee8630904fa45208040b3435c1c667dff5c4b1ef816b6f07b96d5c39f9bd699d79e38ed1107043df8e8f153355b14c6254c149860de

  • SSDEEP

    1536:CTWciVRRNRR3EBbLTWciVRRNRR3EBbAKW:hRrRrRrR/

Malware Config

Targets

    • Target

      a3ca16fab5ee41e498c21ead607a2a1bf8233116bd0d6e6196e2dc02686d5ba0.exe

    • Size

      105KB

    • MD5

      791dff1017790ca87bf11e6a0e0a3f4f

    • SHA1

      e378c9e1ca76f59ed37d9b42ff050d66f29ca1f5

    • SHA256

      a3ca16fab5ee41e498c21ead607a2a1bf8233116bd0d6e6196e2dc02686d5ba0

    • SHA512

      79a0f602c9fb9bf7089ecee8630904fa45208040b3435c1c667dff5c4b1ef816b6f07b96d5c39f9bd699d79e38ed1107043df8e8f153355b14c6254c149860de

    • SSDEEP

      1536:CTWciVRRNRR3EBbLTWciVRRNRR3EBbAKW:hRrRrRrR/

    • Renames multiple (330) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks