a09bf595090a55261a2cdf00f3d731259b0415346e45cc0414eaf283d3234b3b | Triage

Sharing

General

Target

068c9436db1b128cd483746e1e55dc10N.exe
Size

89KB
Sample

240723-zegycsxcqr
MD5

068c9436db1b128cd483746e1e55dc10
SHA1

1f614faf4a68b8142e10abde57630a8afee532b1
SHA256

a09bf595090a55261a2cdf00f3d731259b0415346e45cc0414eaf283d3234b3b
SHA512

57200b844ca62a3f0d034d164c642dbe537d86cd9b3e3d2cbf8cd9d58d869a664c96ad8c9cf6fb5071da578f5d97c191e5eb6266f86a0f55da5575d1e519dbae
SSDEEP

1536:/7ZQpApze+eO888888888888888888888888888888888888888888888888888n:9QWpze+eO8888888888888888888888W

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  068c9436db1b128cd483746e1e55dc10N.exe
- Size
  
  89KB
- MD5
  
  068c9436db1b128cd483746e1e55dc10
- SHA1
  
  1f614faf4a68b8142e10abde57630a8afee532b1
- SHA256
  
  a09bf595090a55261a2cdf00f3d731259b0415346e45cc0414eaf283d3234b3b
- SHA512
  
  57200b844ca62a3f0d034d164c642dbe537d86cd9b3e3d2cbf8cd9d58d869a664c96ad8c9cf6fb5071da578f5d97c191e5eb6266f86a0f55da5575d1e519dbae
- SSDEEP
  
  1536:/7ZQpApze+eO888888888888888888888888888888888888888888888888888n:9QWpze+eO8888888888888888888888W
Score

9^/10

discovery ransomware
- Renames multiple (2844) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware