General

  • Target

    7149674fc198c00cd9b72fc23d1865e17b36d3f0a4c3c077dc0f915b014d4d86

  • Size

    46KB

  • Sample

    250519-s5jrba1jw3

  • MD5

    72be0def0ee1eda2a79b9f89d5d5f4df

  • SHA1

    fd69cb356b16b1dcfd3da920ebed0fa95f5618f3

  • SHA256

    7149674fc198c00cd9b72fc23d1865e17b36d3f0a4c3c077dc0f915b014d4d86

  • SHA512

    10b3cd0c521368f83ab426325d61102fe326647f78a9d6909fc555f29d1f4906dc71c331f3e712c28235683c1a8fa51b53a7eb0bc8f19fc65f135008ec1d3805

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rO2aQZ4FLz8ae+rOn8ae+rO2aO:uGIIkGIIC

Score
9/10

Malware Config

Targets

    • Target

      7149674fc198c00cd9b72fc23d1865e17b36d3f0a4c3c077dc0f915b014d4d86

    • Size

      46KB

    • MD5

      72be0def0ee1eda2a79b9f89d5d5f4df

    • SHA1

      fd69cb356b16b1dcfd3da920ebed0fa95f5618f3

    • SHA256

      7149674fc198c00cd9b72fc23d1865e17b36d3f0a4c3c077dc0f915b014d4d86

    • SHA512

      10b3cd0c521368f83ab426325d61102fe326647f78a9d6909fc555f29d1f4906dc71c331f3e712c28235683c1a8fa51b53a7eb0bc8f19fc65f135008ec1d3805

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rO2aQZ4FLz8ae+rOn8ae+rO2aO:uGIIkGIIC

    Score
    9/10
    • Renames multiple (5229) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks