General

  • Target

    4d8df46b40fe4c95e3df61d67b3cc2f7df939d9b9767e322e6a2a6396fd7bd6b

  • Size

    78KB

  • Sample

    250519-v971ta1rz5

  • MD5

    b279b4bb313817c1166eb951d960fa1f

  • SHA1

    b0d6de1143f8ef4b673a7548ebe193be9ebde1df

  • SHA256

    4d8df46b40fe4c95e3df61d67b3cc2f7df939d9b9767e322e6a2a6396fd7bd6b

  • SHA512

    4744fe7f9f75b00f5dfbfa24f770e0dfdfead3dd683e16906fc5b2fa6239884cbaede2fc824a1745abfe668e67e28049bb3836b273b62599abcdb3aeef226656

  • SSDEEP

    768:uZ4FLz8ae+rOn8ae+rO3ILE2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zA:uGIIr+I8K/XCKCGSqzVe

Score
9/10

Malware Config

Targets

    • Target

      4d8df46b40fe4c95e3df61d67b3cc2f7df939d9b9767e322e6a2a6396fd7bd6b

    • Size

      78KB

    • MD5

      b279b4bb313817c1166eb951d960fa1f

    • SHA1

      b0d6de1143f8ef4b673a7548ebe193be9ebde1df

    • SHA256

      4d8df46b40fe4c95e3df61d67b3cc2f7df939d9b9767e322e6a2a6396fd7bd6b

    • SHA512

      4744fe7f9f75b00f5dfbfa24f770e0dfdfead3dd683e16906fc5b2fa6239884cbaede2fc824a1745abfe668e67e28049bb3836b273b62599abcdb3aeef226656

    • SSDEEP

      768:uZ4FLz8ae+rOn8ae+rO3ILE2lGZD4TzvPYNWw1Asvvzzv6t0+3eQKyvqjjUJu9zA:uGIIr+I8K/XCKCGSqzVe

    Score
    9/10
    • Renames multiple (5285) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v16

Tasks