950c8085355d2af7307157e00c28c2ec33709d8ce1e871f08ddc5a321db05f54 | Triage

Sharing

General

Target

140d299ed59d5d61227053ee68a48c30N.exe
Size

81KB
Sample

240723-14m2cavdjc
MD5

140d299ed59d5d61227053ee68a48c30
SHA1

5ec3c510599e3b39a4f6e67dfe12fa2bf17487ab
SHA256

950c8085355d2af7307157e00c28c2ec33709d8ce1e871f08ddc5a321db05f54
SHA512

9d7672382106a9dfa2d0a43416073b75e71a337b2d8a2e7fa1e68552294723470f0ef723db6997b17f5968ffdfcc7a6cd625d30747262233a0d87664ba33b844
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQeEBIEBF:69WpQE0zUzXs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  140d299ed59d5d61227053ee68a48c30N.exe
- Size
  
  81KB
- MD5
  
  140d299ed59d5d61227053ee68a48c30
- SHA1
  
  5ec3c510599e3b39a4f6e67dfe12fa2bf17487ab
- SHA256
  
  950c8085355d2af7307157e00c28c2ec33709d8ce1e871f08ddc5a321db05f54
- SHA512
  
  9d7672382106a9dfa2d0a43416073b75e71a337b2d8a2e7fa1e68552294723470f0ef723db6997b17f5968ffdfcc7a6cd625d30747262233a0d87664ba33b844
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQeEBIEBF:69WpQE0zUzXs
Score

9^/10

discovery ransomware
- Renames multiple (2893) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware