6b44412f4372f8a782cbd1a5f86c8304a00909de0e447a623aacde9dfb0c45c6 | Triage

Sharing

General

Target

0fa8974089fe15ae4a6528e814b7cca0N.exe
Size

39KB
Sample

240723-1jlmsatape
MD5

0fa8974089fe15ae4a6528e814b7cca0
SHA1

197579d7060de3de319ea859983c2b582276b3f3
SHA256

6b44412f4372f8a782cbd1a5f86c8304a00909de0e447a623aacde9dfb0c45c6
SHA512

188a5f499ffea0fbb5f7e784270bf82ce03c136f799c6bd304b61c0ab65993470ac36b2cb5178ece21b110d4a15b1aa930f30ac4c62668f0c122d82d5f68dd70
SSDEEP

768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSn:W7ZppApBMyKoIWbsHfySkT5GeCyi348Y

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0fa8974089fe15ae4a6528e814b7cca0N.exe
- Size
  
  39KB
- MD5
  
  0fa8974089fe15ae4a6528e814b7cca0
- SHA1
  
  197579d7060de3de319ea859983c2b582276b3f3
- SHA256
  
  6b44412f4372f8a782cbd1a5f86c8304a00909de0e447a623aacde9dfb0c45c6
- SHA512
  
  188a5f499ffea0fbb5f7e784270bf82ce03c136f799c6bd304b61c0ab65993470ac36b2cb5178ece21b110d4a15b1aa930f30ac4c62668f0c122d82d5f68dd70
- SSDEEP
  
  768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSn:W7ZppApBMyKoIWbsHfySkT5GeCyi348Y
Score

9^/10

discovery ransomware
- Renames multiple (3229) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware