General

  • Target

    d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d

  • Size

    43KB

  • Sample

    250519-ntldjsxnt3

  • MD5

    da42b6a3e966624071d2b9eacb5dc9b1

  • SHA1

    7bb27efceef62f20acc45578723f8ff269d98701

  • SHA256

    d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d

  • SHA512

    98a2ea650d260bfc3a997ecea68a1e40b6f1234270feaf8c0a8383bf48f5b1981b407845cf505637ea71e5877b4fd245bd2f157c23ba7278d5f588d69d914985

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rOdzEytU5CzEytU5cZ4FLz8ae+rOn8ae+rOdzEytU5CzEyY:uGIId7C5C7C5cGIId7C5C7C5wtvtE

Score
9/10

Malware Config

Targets

    • Target

      d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d

    • Size

      43KB

    • MD5

      da42b6a3e966624071d2b9eacb5dc9b1

    • SHA1

      7bb27efceef62f20acc45578723f8ff269d98701

    • SHA256

      d1319ce749850a8c657e41b89d73b74af18b30e78ac276ccd5262f2755883f8d

    • SHA512

      98a2ea650d260bfc3a997ecea68a1e40b6f1234270feaf8c0a8383bf48f5b1981b407845cf505637ea71e5877b4fd245bd2f157c23ba7278d5f588d69d914985

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rOdzEytU5CzEytU5cZ4FLz8ae+rOn8ae+rOdzEytU5CzEyY:uGIId7C5C7C5cGIId7C5C7C5wtvtE

    Score
    9/10
    • Renames multiple (5260) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks