784cbb9fff9f0a6d5c0c76bae7c4fc72e8280a4e8fe7dbfc04fec05090666a8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2de5c2a5a36cc1563e57c6e1b75cc4b0N.exe
Size

275KB
Sample

240725-3jp2basbnr
MD5

2de5c2a5a36cc1563e57c6e1b75cc4b0
SHA1

f79cfd51e1e4b8c3b49aa7de24430a8e8ac36d1c
SHA256

784cbb9fff9f0a6d5c0c76bae7c4fc72e8280a4e8fe7dbfc04fec05090666a8f
SHA512

990be95075e12338992f7414feb136c37912de6fa15baabcd7da4eb2309fae3495c83adfd25ee78c3153f4662420e5e3711bd8104c0dd926d974addf89484634
SSDEEP

6144:RqBAIuZAIuDMVtM/8aB6Up31XnSUJdrIP4n:CAIuZAIuO/6lXtrIw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2de5c2a5a36cc1563e57c6e1b75cc4b0N.exe
- Size
  
  275KB
- MD5
  
  2de5c2a5a36cc1563e57c6e1b75cc4b0
- SHA1
  
  f79cfd51e1e4b8c3b49aa7de24430a8e8ac36d1c
- SHA256
  
  784cbb9fff9f0a6d5c0c76bae7c4fc72e8280a4e8fe7dbfc04fec05090666a8f
- SHA512
  
  990be95075e12338992f7414feb136c37912de6fa15baabcd7da4eb2309fae3495c83adfd25ee78c3153f4662420e5e3711bd8104c0dd926d974addf89484634
- SSDEEP
  
  6144:RqBAIuZAIuDMVtM/8aB6Up31XnSUJdrIP4n:CAIuZAIuO/6lXtrIw
Score

9^/10

discovery ransomware
- Renames multiple (1599) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware