56b983417274ab52f6590fa674621051d24e8f2dd68943ed8a21ee016367187f | Triage

Sharing

General

Target

98ba5529ed7feab78d0f98283f1d25e0N.exe
Size

43KB
Sample

240727-f53szazbml
MD5

98ba5529ed7feab78d0f98283f1d25e0
SHA1

e11b4c5acf0539b4b407b0095279ab3437df9dad
SHA256

56b983417274ab52f6590fa674621051d24e8f2dd68943ed8a21ee016367187f
SHA512

7ac3dda47a144afe79f7b6a30a9c22039c705edffff10c6dc52f240d9e742161db302294fc3c67b9afef7d6b6d035292dec56a8e293eadf9a56c966508281b29
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpRo+fOiJbfo+fOiJbCk8t8QPF:W7ZppApBULcfpHLcfp/ZeLPF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  98ba5529ed7feab78d0f98283f1d25e0N.exe
- Size
  
  43KB
- MD5
  
  98ba5529ed7feab78d0f98283f1d25e0
- SHA1
  
  e11b4c5acf0539b4b407b0095279ab3437df9dad
- SHA256
  
  56b983417274ab52f6590fa674621051d24e8f2dd68943ed8a21ee016367187f
- SHA512
  
  7ac3dda47a144afe79f7b6a30a9c22039c705edffff10c6dc52f240d9e742161db302294fc3c67b9afef7d6b6d035292dec56a8e293eadf9a56c966508281b29
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpRo+fOiJbfo+fOiJbCk8t8QPF:W7ZppApBULcfpHLcfp/ZeLPF
Score

9^/10

discovery ransomware
- Renames multiple (237) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware