General

  • Target

    ce17f3c1f2c8464b4c8c09690b94dba499ea5a20cf3b25046d8e974bd2596abf

  • Size

    73KB

  • Sample

    250518-tfqn1agn3w

  • MD5

    947bb9b61851b778109fad762e9c0f3b

  • SHA1

    24e41d6eddb7e16b5f57152d3a4c68c00c5e88c2

  • SHA256

    ce17f3c1f2c8464b4c8c09690b94dba499ea5a20cf3b25046d8e974bd2596abf

  • SHA512

    ba53beb1a7a9666f36d4b4e8af6216b65d03fe49373dbca0d80ff8e21fe4cf536055a60b128e63b8dc492350724ceee87282775cd3cde8a9218cabfc6b062189

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rObfME2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zQ:uGIIf+I8K/XCKCGSqzVm

Score
9/10

Malware Config

Targets

    • Target

      ce17f3c1f2c8464b4c8c09690b94dba499ea5a20cf3b25046d8e974bd2596abf

    • Size

      73KB

    • MD5

      947bb9b61851b778109fad762e9c0f3b

    • SHA1

      24e41d6eddb7e16b5f57152d3a4c68c00c5e88c2

    • SHA256

      ce17f3c1f2c8464b4c8c09690b94dba499ea5a20cf3b25046d8e974bd2596abf

    • SHA512

      ba53beb1a7a9666f36d4b4e8af6216b65d03fe49373dbca0d80ff8e21fe4cf536055a60b128e63b8dc492350724ceee87282775cd3cde8a9218cabfc6b062189

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rObfME2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zQ:uGIIf+I8K/XCKCGSqzVm

    Score
    9/10
    • Renames multiple (5206) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks