General

  • Target

    c534f46419110e5c5df148bddf56328ba0870426cc80c73634a45a1c0f372069

  • Size

    73KB

  • Sample

    250515-d55lfsyrt9

  • MD5

    742cab08902818cfb2c8b4cab805347c

  • SHA1

    2906b43762e9959883f999d8ba415a6419f6f0b0

  • SHA256

    c534f46419110e5c5df148bddf56328ba0870426cc80c73634a45a1c0f372069

  • SHA512

    501ab557cc63b51459d947d16944e544d0e6949a18ad922a2902ffe89a8c399963ab80e331bd4f2719fdafd8ff86feef1f434feba8b31a028e2156c9ed565fc3

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rObE2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zVBe:uGIIC+I8K/XCKCGSqzVA

Score
9/10

Malware Config

Targets

    • Target

      c534f46419110e5c5df148bddf56328ba0870426cc80c73634a45a1c0f372069

    • Size

      73KB

    • MD5

      742cab08902818cfb2c8b4cab805347c

    • SHA1

      2906b43762e9959883f999d8ba415a6419f6f0b0

    • SHA256

      c534f46419110e5c5df148bddf56328ba0870426cc80c73634a45a1c0f372069

    • SHA512

      501ab557cc63b51459d947d16944e544d0e6949a18ad922a2902ffe89a8c399963ab80e331bd4f2719fdafd8ff86feef1f434feba8b31a028e2156c9ed565fc3

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rObE2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zVBe:uGIIC+I8K/XCKCGSqzVA

    Score
    9/10
    • Renames multiple (5206) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks