General

  • Target

    afb5cea666378e5b1b035cbff5135d5ace2346fa5cab07a455f0a5038a76a9f4

  • Size

    235KB

  • Sample

    241115-bskz6swfnd

  • MD5

    61e1b430b2ad229c2bbce5c207ab6187

  • SHA1

    ef702c7948bd524713650436f6ba6c036a787767

  • SHA256

    afb5cea666378e5b1b035cbff5135d5ace2346fa5cab07a455f0a5038a76a9f4

  • SHA512

    ee4b771af71f0a38836e1389f57ade9216df556d98f67450e1c18583ff09b13b4f8bfbf5cae8e3447325a4d7d295241d5e7f9efb3cea2e2c7a405cadaaea6e80

  • SSDEEP

    3072:fny1tE/sitCab47kATGB1FtE/sitCab47kATGB1Z:KbEn/brEn/bZ

Malware Config

Targets

    • Target

      afb5cea666378e5b1b035cbff5135d5ace2346fa5cab07a455f0a5038a76a9f4

    • Size

      235KB

    • MD5

      61e1b430b2ad229c2bbce5c207ab6187

    • SHA1

      ef702c7948bd524713650436f6ba6c036a787767

    • SHA256

      afb5cea666378e5b1b035cbff5135d5ace2346fa5cab07a455f0a5038a76a9f4

    • SHA512

      ee4b771af71f0a38836e1389f57ade9216df556d98f67450e1c18583ff09b13b4f8bfbf5cae8e3447325a4d7d295241d5e7f9efb3cea2e2c7a405cadaaea6e80

    • SSDEEP

      3072:fny1tE/sitCab47kATGB1FtE/sitCab47kATGB1Z:KbEn/brEn/bZ

    • Renames multiple (2845) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks