9cb4825b51c08ad63c839b2c5a02b3b406484f94c9fd7f6a4a904b30e6bc7602 | Triage

Sharing

General

Target

0b6d9648d8fc5e0f99dee5b1c5a25310N.exe
Size

85KB
Sample

240723-z1g59asaka
MD5

0b6d9648d8fc5e0f99dee5b1c5a25310
SHA1

2e56a36339d4f8ae133017318a96a653c09c9cbe
SHA256

9cb4825b51c08ad63c839b2c5a02b3b406484f94c9fd7f6a4a904b30e6bc7602
SHA512

e8bc05225c51706021360ef26d1c0adde012dda81ae60732e3018cc732bf6df79810543085019a9d35860d7f5cad656ac82de2b576975e97ee591c355b66ecc7
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhT:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsy

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0b6d9648d8fc5e0f99dee5b1c5a25310N.exe
- Size
  
  85KB
- MD5
  
  0b6d9648d8fc5e0f99dee5b1c5a25310
- SHA1
  
  2e56a36339d4f8ae133017318a96a653c09c9cbe
- SHA256
  
  9cb4825b51c08ad63c839b2c5a02b3b406484f94c9fd7f6a4a904b30e6bc7602
- SHA512
  
  e8bc05225c51706021360ef26d1c0adde012dda81ae60732e3018cc732bf6df79810543085019a9d35860d7f5cad656ac82de2b576975e97ee591c355b66ecc7
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhT:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsy
Score

9^/10

discovery ransomware
- Renames multiple (2818) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware