General

  • Target

    e2fd8e7487d92dd5d33d93d195a3830eb36d27bb830cc10a9dd88d3d1826ebcbN.exe

  • Size

    21KB

  • Sample

    241119-zspkcstbjj

  • MD5

    174bdaf20e386402c24fd98fa645b9f0

  • SHA1

    b745691838ddf38f105b223c365b29476d69d067

  • SHA256

    e2fd8e7487d92dd5d33d93d195a3830eb36d27bb830cc10a9dd88d3d1826ebcb

  • SHA512

    d3f1a3babc460b32afd45cfa743d0dee034e539b34e98456a5d9376b3da9db11f28df985537ccb1456d4a15a25e9a4a627e713570973a296a68a8aa649065717

  • SSDEEP

    384:QOlIBXDaU7CPKK0TIhfJJcbQbf1Oti1JGBQOOiQJhAT17Jl:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJc

Malware Config

Targets

    • Target

      e2fd8e7487d92dd5d33d93d195a3830eb36d27bb830cc10a9dd88d3d1826ebcbN.exe

    • Size

      21KB

    • MD5

      174bdaf20e386402c24fd98fa645b9f0

    • SHA1

      b745691838ddf38f105b223c365b29476d69d067

    • SHA256

      e2fd8e7487d92dd5d33d93d195a3830eb36d27bb830cc10a9dd88d3d1826ebcb

    • SHA512

      d3f1a3babc460b32afd45cfa743d0dee034e539b34e98456a5d9376b3da9db11f28df985537ccb1456d4a15a25e9a4a627e713570973a296a68a8aa649065717

    • SSDEEP

      384:QOlIBXDaU7CPKK0TIhfJJcbQbf1Oti1JGBQOOiQJhAT17Jl:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJc

    • Renames multiple (2848) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks