General

  • Target

    d34c1bd1cd1a536d149f3f5e5686eecb99c001fab9e196e56b06a652a5a017a3

  • Size

    46KB

  • Sample

    241115-cycfnawphy

  • MD5

    57704d2dd2dbb11503b782c99e7e8120

  • SHA1

    49f82f0f2d74122af88b821ed1a134e54953550c

  • SHA256

    d34c1bd1cd1a536d149f3f5e5686eecb99c001fab9e196e56b06a652a5a017a3

  • SHA512

    33ed6cd0a4ff757e81f6579143fa24b74db410d8a95aaacc8b8c6569bb4836561748c41abc7a40b970e31cf6dca5a0aed5337ac7e11d5af6d91ef26523397376

  • SSDEEP

    768:kBT37CPKKdJJTUNOXqA7JkuA/JQqA7JkuA/JlF/MF/roYjOijJfoYjOijJjCQClj:CTW7JJTUNOa2Rd7CQCZCU

Malware Config

Targets

    • Target

      d34c1bd1cd1a536d149f3f5e5686eecb99c001fab9e196e56b06a652a5a017a3

    • Size

      46KB

    • MD5

      57704d2dd2dbb11503b782c99e7e8120

    • SHA1

      49f82f0f2d74122af88b821ed1a134e54953550c

    • SHA256

      d34c1bd1cd1a536d149f3f5e5686eecb99c001fab9e196e56b06a652a5a017a3

    • SHA512

      33ed6cd0a4ff757e81f6579143fa24b74db410d8a95aaacc8b8c6569bb4836561748c41abc7a40b970e31cf6dca5a0aed5337ac7e11d5af6d91ef26523397376

    • SSDEEP

      768:kBT37CPKKdJJTUNOXqA7JkuA/JQqA7JkuA/JlF/MF/roYjOijJfoYjOijJjCQClj:CTW7JJTUNOa2Rd7CQCZCU

    • Renames multiple (3789) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks