55bab5d1b8c2947322b0ad3aa9a45bec8eac594a82eef6a800714714bfb4a2ab | Triage

Sharing

General

Target

f0060aacb023236a897fb094a71fc120N.exe
Size

98KB
Sample

240725-yddzmstejf
MD5

f0060aacb023236a897fb094a71fc120
SHA1

ba1953246562dcc2abaa1a45e73ee0bd09b029fe
SHA256

55bab5d1b8c2947322b0ad3aa9a45bec8eac594a82eef6a800714714bfb4a2ab
SHA512

ee4c794cb6627924abe58ac83c19f9ee3272c9ce8869d353dd7f0f13d85282208eba4a238be8ec1f49e1dd9d9ff0b3c4fedef6c69281ea0cb83301ca547cf88f
SSDEEP

768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmhyEXBwzEXBwuqX:W7ZDpApYbWjIoPyPoLzV7c6Shw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f0060aacb023236a897fb094a71fc120N.exe
- Size
  
  98KB
- MD5
  
  f0060aacb023236a897fb094a71fc120
- SHA1
  
  ba1953246562dcc2abaa1a45e73ee0bd09b029fe
- SHA256
  
  55bab5d1b8c2947322b0ad3aa9a45bec8eac594a82eef6a800714714bfb4a2ab
- SHA512
  
  ee4c794cb6627924abe58ac83c19f9ee3272c9ce8869d353dd7f0f13d85282208eba4a238be8ec1f49e1dd9d9ff0b3c4fedef6c69281ea0cb83301ca547cf88f
- SSDEEP
  
  768:W7BlpDpARFbhYQkQjjIXYvPXzWPXzK3733uF4V7en5c5HChCrmhyEXBwzEXBwuqX:W7ZDpApYbWjIoPyPoLzV7c6Shw
Score

9^/10

discovery ransomware
- Renames multiple (2823) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware