General

  • Target

    31cf7dceeae3de7e7161b5f21f7129b3f37cede61190c59cfcd05eb938ad9028

  • Size

    84KB

  • Sample

    241112-zrn77szndv

  • MD5

    87cb8ef44b2de34253452e1e96ec5719

  • SHA1

    02d2265cec20a6e26d5c90022e2dd74d611da40b

  • SHA256

    31cf7dceeae3de7e7161b5f21f7129b3f37cede61190c59cfcd05eb938ad9028

  • SHA512

    fdd5dceac3e4d9c2a7a0b0cd911caa2d481787284f4aab51f8f0148ce38c0865cbf942e816207fad6223ee534494ba81dcefe74e5ed3a4d8c0b5a0d9af5ccad7

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxv:fnyiQSom

Malware Config

Targets

    • Target

      31cf7dceeae3de7e7161b5f21f7129b3f37cede61190c59cfcd05eb938ad9028

    • Size

      84KB

    • MD5

      87cb8ef44b2de34253452e1e96ec5719

    • SHA1

      02d2265cec20a6e26d5c90022e2dd74d611da40b

    • SHA256

      31cf7dceeae3de7e7161b5f21f7129b3f37cede61190c59cfcd05eb938ad9028

    • SHA512

      fdd5dceac3e4d9c2a7a0b0cd911caa2d481787284f4aab51f8f0148ce38c0865cbf942e816207fad6223ee534494ba81dcefe74e5ed3a4d8c0b5a0d9af5ccad7

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxv:fnyiQSom

    • Renames multiple (3687) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks