61a8b0dc95f73f935b15f664f7bf207639e1670222a60b24b244db637dcf0575 | Triage

Sharing

General

Target

4783863082f561c2e28e3690fa649130N.exe
Size

86KB
Sample

240724-epp2haxdnj
MD5

4783863082f561c2e28e3690fa649130
SHA1

c3f072de7ae0294583aa3637058308ffa0990185
SHA256

61a8b0dc95f73f935b15f664f7bf207639e1670222a60b24b244db637dcf0575
SHA512

bebaf220833fbed74b9f494cac1f4ab825325da23966d949cd0f3811da6f001197149b1a9403750a1b083100f8d3eda9b89aa4be01c313a7295c4f903f341248
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQBhVzhVx:69WpQE0zUzXYb3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4783863082f561c2e28e3690fa649130N.exe
- Size
  
  86KB
- MD5
  
  4783863082f561c2e28e3690fa649130
- SHA1
  
  c3f072de7ae0294583aa3637058308ffa0990185
- SHA256
  
  61a8b0dc95f73f935b15f664f7bf207639e1670222a60b24b244db637dcf0575
- SHA512
  
  bebaf220833fbed74b9f494cac1f4ab825325da23966d949cd0f3811da6f001197149b1a9403750a1b083100f8d3eda9b89aa4be01c313a7295c4f903f341248
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQBhVzhVx:69WpQE0zUzXYb3
Score

9^/10

discovery ransomware
- Renames multiple (2847) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware