e1b01c6e09b9f0166ff5a94e025513cc20d531c8a167567bcb536ce97d49088e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b9ce0f1a490027d15d18c939bec6cd0N.exe
Size

73KB
Sample

240724-e9plgaycpn
MD5

4b9ce0f1a490027d15d18c939bec6cd0
SHA1

d259715921353d62d31842b38802ae2e54a4906a
SHA256

e1b01c6e09b9f0166ff5a94e025513cc20d531c8a167567bcb536ce97d49088e
SHA512

d520518496c814c68ca640b3e62b76595487bdf8af391ec165c8b45652b95492360bb7ac734b6695ec6d8628c8595a758e8e34ca88b02150529e17fb0fc853df
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsd9oq:6e7WpMaxeb0CYJ97lEYNR73e+eO

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4b9ce0f1a490027d15d18c939bec6cd0N.exe
- Size
  
  73KB
- MD5
  
  4b9ce0f1a490027d15d18c939bec6cd0
- SHA1
  
  d259715921353d62d31842b38802ae2e54a4906a
- SHA256
  
  e1b01c6e09b9f0166ff5a94e025513cc20d531c8a167567bcb536ce97d49088e
- SHA512
  
  d520518496c814c68ca640b3e62b76595487bdf8af391ec165c8b45652b95492360bb7ac734b6695ec6d8628c8595a758e8e34ca88b02150529e17fb0fc853df
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsd9oq:6e7WpMaxeb0CYJ97lEYNR73e+eO
Score

9^/10

discovery ransomware
- Renames multiple (2792) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware