General

  • Target

    4d67aba98befb245e1f4be4321c6e03c0174efbc07d8840ea65ea20e55475aa2

  • Size

    47KB

  • Sample

    250515-d782naz1f1

  • MD5

    86032feedd70f7e7d08eb45c145b4c4b

  • SHA1

    03951c0fb14b779aff397b0da1457ad43dd331d9

  • SHA256

    4d67aba98befb245e1f4be4321c6e03c0174efbc07d8840ea65ea20e55475aa2

  • SHA512

    36a66c7a55d301edc689df9560e6bf872ad15edd57e4b295cff7ca3d0a67bdcf1ce535751c86c4adb8812e4dd342e26f2e5935f4455f08e905cd1892881ebd6c

  • SSDEEP

    768:s7BlpppARFbhdLz8ae+rOn8ae+rOb857BlpppARFbhdLz8ae+rOn8ae+rOb8o:s7ZppApdII07ZppApdIID

Score
9/10

Malware Config

Targets

    • Target

      4d67aba98befb245e1f4be4321c6e03c0174efbc07d8840ea65ea20e55475aa2

    • Size

      47KB

    • MD5

      86032feedd70f7e7d08eb45c145b4c4b

    • SHA1

      03951c0fb14b779aff397b0da1457ad43dd331d9

    • SHA256

      4d67aba98befb245e1f4be4321c6e03c0174efbc07d8840ea65ea20e55475aa2

    • SHA512

      36a66c7a55d301edc689df9560e6bf872ad15edd57e4b295cff7ca3d0a67bdcf1ce535751c86c4adb8812e4dd342e26f2e5935f4455f08e905cd1892881ebd6c

    • SSDEEP

      768:s7BlpppARFbhdLz8ae+rOn8ae+rOb857BlpppARFbhdLz8ae+rOn8ae+rOb8o:s7ZppApdII07ZppApdIID

    Score
    9/10
    • Renames multiple (5022) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks