General

  • Target

    0437fef10ea0f7bbc7b95fc311c8927687fe59be0b8f265b6ffe199d6882656c.exe

  • Size

    135KB

  • Sample

    241119-xqma4sznev

  • MD5

    95d2d09314c29ff7145bb162d96c7e51

  • SHA1

    1f366498b2cbe0127a49e1c229919fad14c7a747

  • SHA256

    0437fef10ea0f7bbc7b95fc311c8927687fe59be0b8f265b6ffe199d6882656c

  • SHA512

    60c25448d6ad40d836f5643e02228b17beac0f22df1ea58d83a41068075422d447efc6605fa2994bffbef7379bb9a27c4221abd457ad2134ec6531105713e9b0

  • SSDEEP

    1536:CTW7JJZENTBHfiP3zz4pWHlPEXZzjUq3th5f6utM5vLNinVmWvMu0b2UdpXk+p0P:htEvWHIjN3tj6qnv0b2UrXkbvL7

Malware Config

Targets

    • Target

      0437fef10ea0f7bbc7b95fc311c8927687fe59be0b8f265b6ffe199d6882656c.exe

    • Size

      135KB

    • MD5

      95d2d09314c29ff7145bb162d96c7e51

    • SHA1

      1f366498b2cbe0127a49e1c229919fad14c7a747

    • SHA256

      0437fef10ea0f7bbc7b95fc311c8927687fe59be0b8f265b6ffe199d6882656c

    • SHA512

      60c25448d6ad40d836f5643e02228b17beac0f22df1ea58d83a41068075422d447efc6605fa2994bffbef7379bb9a27c4221abd457ad2134ec6531105713e9b0

    • SSDEEP

      1536:CTW7JJZENTBHfiP3zz4pWHlPEXZzjUq3th5f6utM5vLNinVmWvMu0b2UdpXk+p0P:htEvWHIjN3tj6qnv0b2UrXkbvL7

    • Renames multiple (2355) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks