f4a131ffcacd9a21cba08006cc5032ce2b67fe48ce86834549f37f1a3779be7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

046f9c8f53662ae90c06772b1e769430N.exe
Size

57KB
Sample

240723-y51mqazcjh
MD5

046f9c8f53662ae90c06772b1e769430
SHA1

e2d30891954f6286b738d8391ca7573d56bc268e
SHA256

f4a131ffcacd9a21cba08006cc5032ce2b67fe48ce86834549f37f1a3779be7c
SHA512

bb6c5e8ce7aa7df2fa7c1ce6e6a8ac0bdff22db64770b403e6a90351f0cb4b9b4a29a55eed801765835f1e01bc53d45439b648380e6cd3ba491305cb04061ec9
SSDEEP

384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsFMG0Z9hREtG0Z9hRE0:W7BlpNLpARFbhblkYlkuvIYFdJSpXeX1

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  046f9c8f53662ae90c06772b1e769430N.exe
- Size
  
  57KB
- MD5
  
  046f9c8f53662ae90c06772b1e769430
- SHA1
  
  e2d30891954f6286b738d8391ca7573d56bc268e
- SHA256
  
  f4a131ffcacd9a21cba08006cc5032ce2b67fe48ce86834549f37f1a3779be7c
- SHA512
  
  bb6c5e8ce7aa7df2fa7c1ce6e6a8ac0bdff22db64770b403e6a90351f0cb4b9b4a29a55eed801765835f1e01bc53d45439b648380e6cd3ba491305cb04061ec9
- SSDEEP
  
  384:GBt7Br5xjLMuLAgA71FbhvDl3DG71ul3DG71XUmUIYFAHsFMG0Z9hREtG0Z9hRE0:W7BlpNLpARFbhblkYlkuvIYFdJSpXeX1
Score

9^/10

discovery ransomware
- Renames multiple (251) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware