e1fab8ce13ddb1268460151124328f5efefbd6ab5f4eb485a811645bc41577a0 | Triage

Sharing

General

Target

763ef444738ef8daf6811fb0718e8bc0N.exe
Size

36KB
Sample

240727-a9drrawcpl
MD5

763ef444738ef8daf6811fb0718e8bc0
SHA1

41d65fb54d1ce8bd29ce85cba43ae4356a73d651
SHA256

e1fab8ce13ddb1268460151124328f5efefbd6ab5f4eb485a811645bc41577a0
SHA512

a34debe2eefd1c71c18b57717b44d7403793cc718439451978ed7c626f60234b05ed13244eee30632b96b1ddc37d010d89889116c8731d47fe224259a0be44a2
SSDEEP

768:W7BlpppARFbhjbhQYjYY4F2j3TK54F2j3TKm:W7ZppApB1W5Wm

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  763ef444738ef8daf6811fb0718e8bc0N.exe
- Size
  
  36KB
- MD5
  
  763ef444738ef8daf6811fb0718e8bc0
- SHA1
  
  41d65fb54d1ce8bd29ce85cba43ae4356a73d651
- SHA256
  
  e1fab8ce13ddb1268460151124328f5efefbd6ab5f4eb485a811645bc41577a0
- SHA512
  
  a34debe2eefd1c71c18b57717b44d7403793cc718439451978ed7c626f60234b05ed13244eee30632b96b1ddc37d010d89889116c8731d47fe224259a0be44a2
- SSDEEP
  
  768:W7BlpppARFbhjbhQYjYY4F2j3TK54F2j3TKm:W7ZppApB1W5Wm
Score

9^/10

discovery ransomware
- Renames multiple (2642) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware