fbb1f860c7b0ad5b7228875390c09aa580587eea76c05fba2fe7c0bb11c36041 | Triage

Sharing

General

Target

5ea6525ec120d2492e81131c71fbf9a0N.exe
Size

38KB
Sample

240726-12b63axgmp
MD5

5ea6525ec120d2492e81131c71fbf9a0
SHA1

713bd07ecf6ae51a5de33d05f2809e73a9a10a61
SHA256

fbb1f860c7b0ad5b7228875390c09aa580587eea76c05fba2fe7c0bb11c36041
SHA512

7a38c3017c4f57a00746b36abc001c2d46cba9457c387dd3be109351d287dd0511807142a83765747514d2b5298e6eb36e0162cc015dc3e6da20877fb523c055
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FXtqAYa9tqAYaq:/7BlpQpARFbhTYajYaq

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5ea6525ec120d2492e81131c71fbf9a0N.exe
- Size
  
  38KB
- MD5
  
  5ea6525ec120d2492e81131c71fbf9a0
- SHA1
  
  713bd07ecf6ae51a5de33d05f2809e73a9a10a61
- SHA256
  
  fbb1f860c7b0ad5b7228875390c09aa580587eea76c05fba2fe7c0bb11c36041
- SHA512
  
  7a38c3017c4f57a00746b36abc001c2d46cba9457c387dd3be109351d287dd0511807142a83765747514d2b5298e6eb36e0162cc015dc3e6da20877fb523c055
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FXtqAYa9tqAYaq:/7BlpQpARFbhTYajYaq
Score

9^/10

discovery ransomware
- Renames multiple (3228) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware