578e266185d76a78b64f44c2c10d70a26a9962358a28e23057785df2651db963 | Triage

Sharing

General

Target

1c8a302bd477eb971b043b4e27c2df80N.exe
Size

47KB
Sample

240723-2446astgnn
MD5

1c8a302bd477eb971b043b4e27c2df80
SHA1

ad14405bf61c3f45733c5605d92183dafc2d2607
SHA256

578e266185d76a78b64f44c2c10d70a26a9962358a28e23057785df2651db963
SHA512

da4d69f9f26b0165f6dd8fc578c212e6f7c07fc52d587a4940a188d76664acf49db58ad41c34f0221b09daefc5e2e38df07b58d24fed40d689bdd6848c038319
SSDEEP

384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsAlYXlY+hswN:W7BlpNLpARFbhblkYlkuvIYFdxys

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1c8a302bd477eb971b043b4e27c2df80N.exe
- Size
  
  47KB
- MD5
  
  1c8a302bd477eb971b043b4e27c2df80
- SHA1
  
  ad14405bf61c3f45733c5605d92183dafc2d2607
- SHA256
  
  578e266185d76a78b64f44c2c10d70a26a9962358a28e23057785df2651db963
- SHA512
  
  da4d69f9f26b0165f6dd8fc578c212e6f7c07fc52d587a4940a188d76664acf49db58ad41c34f0221b09daefc5e2e38df07b58d24fed40d689bdd6848c038319
- SSDEEP
  
  384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsAlYXlY+hswN:W7BlpNLpARFbhblkYlkuvIYFdxys
Score

9^/10

discovery ransomware
- Renames multiple (3146) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware