General

  • Target

    d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9

  • Size

    151KB

  • Sample

    250516-cl9kmawkw3

  • MD5

    8c6070c6de4bb47747dd39750a2840ad

  • SHA1

    2ab24313f330bc32e173929ad5bfaf5b012e9f07

  • SHA256

    d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9

  • SHA512

    c58ce682770bef0bb34ad9d109b56574acdcce9d603f7e9054411340466b1e722c795b39cea05830ff81d188253213f64cb304005f346b4c17e6cbd1cbaf88b7

  • SSDEEP

    3072:spWpt+SwyTHBuDZghl3/BnaBRG+72u/NZbhC:Nv+jyTgyH/BYRG+72aNZk

Score
9/10

Malware Config

Targets

    • Target

      d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9

    • Size

      151KB

    • MD5

      8c6070c6de4bb47747dd39750a2840ad

    • SHA1

      2ab24313f330bc32e173929ad5bfaf5b012e9f07

    • SHA256

      d805a4613a20839148d98ced9c9eb18fab261f516321333e5ac53694ac2396b9

    • SHA512

      c58ce682770bef0bb34ad9d109b56574acdcce9d603f7e9054411340466b1e722c795b39cea05830ff81d188253213f64cb304005f346b4c17e6cbd1cbaf88b7

    • SSDEEP

      3072:spWpt+SwyTHBuDZghl3/BnaBRG+72u/NZbhC:Nv+jyTgyH/BYRG+72aNZk

    Score
    9/10
    • Renames multiple (4839) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Enterprise v16

Tasks