General

  • Target

    b3c11fe79046a05b20353a39975a5dd2b6ced188292b31191e4db8c83bd8e75c

  • Size

    78KB

  • Sample

    250519-nthyesxns5

  • MD5

    67ae42ef4bdce0c9766fa8d710a7e857

  • SHA1

    11a334415351994db0137f434c9ddf5e613baab9

  • SHA256

    b3c11fe79046a05b20353a39975a5dd2b6ced188292b31191e4db8c83bd8e75c

  • SHA512

    6bc90db80876bc1195679a29395c01d9c3e6fe128c191b9b3cee58a2c6d19aa36359a62bc913ed3633be8f3b62246b7399beb2bde0794b562f6160dbb57dca7f

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rO3IMqAJ/qAJ6E2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvF:uGII1+I8K/XCKCGSqzVO

Score
9/10

Malware Config

Targets

    • Target

      b3c11fe79046a05b20353a39975a5dd2b6ced188292b31191e4db8c83bd8e75c

    • Size

      78KB

    • MD5

      67ae42ef4bdce0c9766fa8d710a7e857

    • SHA1

      11a334415351994db0137f434c9ddf5e613baab9

    • SHA256

      b3c11fe79046a05b20353a39975a5dd2b6ced188292b31191e4db8c83bd8e75c

    • SHA512

      6bc90db80876bc1195679a29395c01d9c3e6fe128c191b9b3cee58a2c6d19aa36359a62bc913ed3633be8f3b62246b7399beb2bde0794b562f6160dbb57dca7f

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rO3IMqAJ/qAJ6E2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvF:uGII1+I8K/XCKCGSqzVO

    Score
    9/10
    • Renames multiple (5272) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks