207e99e5429116e89af206741153aa8f4eede0cd7ad8586ab27b81c59de3e0e8 | Triage

Sharing

General

Target

6289cab9a0ad98f59040b8a8496596b0N.exe
Size

101KB
Sample

240726-drs1hawenh
MD5

6289cab9a0ad98f59040b8a8496596b0
SHA1

7c10720ae6fb223f03879d4e9d42580121e105d8
SHA256

207e99e5429116e89af206741153aa8f4eede0cd7ad8586ab27b81c59de3e0e8
SHA512

3f92c10e7b1da2d9582d1af8a710db65a6cd21aa379ca8f6185fe972b94da3fa01b0161777bc0fab0513347e8624087632218630f585094a35336642c782cad8
SSDEEP

3072:9QWpze+eO888888888888888888888888888888888888888888888888888888U:Lpe+ekeP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6289cab9a0ad98f59040b8a8496596b0N.exe
- Size
  
  101KB
- MD5
  
  6289cab9a0ad98f59040b8a8496596b0
- SHA1
  
  7c10720ae6fb223f03879d4e9d42580121e105d8
- SHA256
  
  207e99e5429116e89af206741153aa8f4eede0cd7ad8586ab27b81c59de3e0e8
- SHA512
  
  3f92c10e7b1da2d9582d1af8a710db65a6cd21aa379ca8f6185fe972b94da3fa01b0161777bc0fab0513347e8624087632218630f585094a35336642c782cad8
- SSDEEP
  
  3072:9QWpze+eO888888888888888888888888888888888888888888888888888888U:Lpe+ekeP
Score

9^/10

discovery ransomware
- Renames multiple (2844) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware