7a4d5594d4a001a7a0c3fc5e4d668fafd11c886b1c2292c8c9f141476e75492e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91d49a7f2efd17d52f281fcd22057e00N.exe
Size

56KB
Sample

240727-e7vpps1bme
MD5

91d49a7f2efd17d52f281fcd22057e00
SHA1

f7739eddf9753c66bf4d1f450221d7d367be7519
SHA256

7a4d5594d4a001a7a0c3fc5e4d668fafd11c886b1c2292c8c9f141476e75492e
SHA512

bb0f39cb4f79cce24db2670e74adb5cd1dbf0bfff6359e11e503711b811439c20a0315a14be6e4a77dad439637f6833f886cfa75603b1da432675071da287cb7
SSDEEP

768:/7BlpQpARFbhIYJIJDYJIJPfFpsJcFfFpsJcXcMcGK1KK1YnG:/7ZQpApze+eJfFpsJOfFpsJMTE7/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  91d49a7f2efd17d52f281fcd22057e00N.exe
- Size
  
  56KB
- MD5
  
  91d49a7f2efd17d52f281fcd22057e00
- SHA1
  
  f7739eddf9753c66bf4d1f450221d7d367be7519
- SHA256
  
  7a4d5594d4a001a7a0c3fc5e4d668fafd11c886b1c2292c8c9f141476e75492e
- SHA512
  
  bb0f39cb4f79cce24db2670e74adb5cd1dbf0bfff6359e11e503711b811439c20a0315a14be6e4a77dad439637f6833f886cfa75603b1da432675071da287cb7
- SSDEEP
  
  768:/7BlpQpARFbhIYJIJDYJIJPfFpsJcFfFpsJcXcMcGK1KK1YnG:/7ZQpApze+eJfFpsJOfFpsJMTE7/
Score

9^/10

discovery ransomware
- Renames multiple (983) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware