7a276c2b20da36a1a91fedf318f1f25b859d5ab09b76b5b1a0fa640505da3598 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

501713204692c4fd7f7fe44d87754a20N.exe
Size

50KB
Sample

240726-y6qh5swbmb
MD5

501713204692c4fd7f7fe44d87754a20
SHA1

cd9ba23f9523c91d107b0287f6e14c1e284678bd
SHA256

7a276c2b20da36a1a91fedf318f1f25b859d5ab09b76b5b1a0fa640505da3598
SHA512

9abb2fe93c0b932a64165799d8582c558b7942dd05867923fd09e2899e3f00014185b6ab4aed1b946f2cb7378daffa446253a05b3bf68c90b39ae4d2f55c3aa1
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwVX:W7ZppAppX

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  501713204692c4fd7f7fe44d87754a20N.exe
- Size
  
  50KB
- MD5
  
  501713204692c4fd7f7fe44d87754a20
- SHA1
  
  cd9ba23f9523c91d107b0287f6e14c1e284678bd
- SHA256
  
  7a276c2b20da36a1a91fedf318f1f25b859d5ab09b76b5b1a0fa640505da3598
- SHA512
  
  9abb2fe93c0b932a64165799d8582c558b7942dd05867923fd09e2899e3f00014185b6ab4aed1b946f2cb7378daffa446253a05b3bf68c90b39ae4d2f55c3aa1
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwVX:W7ZppAppX
Score

9^/10

discovery ransomware
- Renames multiple (241) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware