General

  • Target

    949d76f3913794f6651f2fe269edcc03a7c20853179cc841947241c9a3c7e316.exe

  • Size

    76KB

  • Sample

    241114-gf845avgnn

  • MD5

    84ad9f98746d0f6a84464453e102d1ed

  • SHA1

    44efa8e6c82359a77e310cd9a09f40acc537dd85

  • SHA256

    949d76f3913794f6651f2fe269edcc03a7c20853179cc841947241c9a3c7e316

  • SHA512

    375bbaa3b2cb0c6d78b0a16d8c08b94e2ad79a7fca63776fd266e3c1643c68b626362ba7cfbd915dc6d63e3f7004aaf82678f594ac352f1887d9c0e72f41fa4e

  • SSDEEP

    1536:CTW7JJ7TPUnWTmmr0ARZF6NFVogjQlRv/LI:hzUWm3wUhQ7X0

Malware Config

Targets

    • Target

      949d76f3913794f6651f2fe269edcc03a7c20853179cc841947241c9a3c7e316.exe

    • Size

      76KB

    • MD5

      84ad9f98746d0f6a84464453e102d1ed

    • SHA1

      44efa8e6c82359a77e310cd9a09f40acc537dd85

    • SHA256

      949d76f3913794f6651f2fe269edcc03a7c20853179cc841947241c9a3c7e316

    • SHA512

      375bbaa3b2cb0c6d78b0a16d8c08b94e2ad79a7fca63776fd266e3c1643c68b626362ba7cfbd915dc6d63e3f7004aaf82678f594ac352f1887d9c0e72f41fa4e

    • SSDEEP

      1536:CTW7JJ7TPUnWTmmr0ARZF6NFVogjQlRv/LI:hzUWm3wUhQ7X0

    • Renames multiple (3146) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks