feca8a7942db48ee52140529bb0b0fec0a2c8d81bd5bf0ccbf01d861e984af05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

171d3d028805c3fad06d9d07e85e0550N.exe
Size

94KB
Sample

240726-q7v61s1hpm
MD5

171d3d028805c3fad06d9d07e85e0550
SHA1

eccadf382cf4d63e3a881f01831c02c2de4f884b
SHA256

feca8a7942db48ee52140529bb0b0fec0a2c8d81bd5bf0ccbf01d861e984af05
SHA512

50b002728e76f4c6ff954f5cce5e2697076e09bc6a0f3b99cd00903fdbc3ee7c0da53a5c27f62607ef4170ac86297be51af3c80d2a2100ee73b2e66d3472639b
SSDEEP

1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689ii9x9lAH:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9G

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  171d3d028805c3fad06d9d07e85e0550N.exe
- Size
  
  94KB
- MD5
  
  171d3d028805c3fad06d9d07e85e0550
- SHA1
  
  eccadf382cf4d63e3a881f01831c02c2de4f884b
- SHA256
  
  feca8a7942db48ee52140529bb0b0fec0a2c8d81bd5bf0ccbf01d861e984af05
- SHA512
  
  50b002728e76f4c6ff954f5cce5e2697076e09bc6a0f3b99cd00903fdbc3ee7c0da53a5c27f62607ef4170ac86297be51af3c80d2a2100ee73b2e66d3472639b
- SSDEEP
  
  1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689ii9x9lAH:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9G
Score

9^/10

discovery ransomware
- Renames multiple (2608) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware