35d3cdd891be006eb84a35e0d4b542e5b2a42d62ebe9d3c434c31721ef4ec090 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b297282bfe1937310b31662872513aa0N.exe
Size

94KB
Sample

240727-lxfalavfkh
MD5

b297282bfe1937310b31662872513aa0
SHA1

2086aa0eaf411d759832562c13470f410494e2ee
SHA256

35d3cdd891be006eb84a35e0d4b542e5b2a42d62ebe9d3c434c31721ef4ec090
SHA512

3aa2dc9fff12df83c9ce35548958442eeff266efc684c5022e2138e5b18188ecd6e085e188226cb5044529954594fd081847920222f022f83cb40e448e5e9721
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEh/:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsK

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b297282bfe1937310b31662872513aa0N.exe
- Size
  
  94KB
- MD5
  
  b297282bfe1937310b31662872513aa0
- SHA1
  
  2086aa0eaf411d759832562c13470f410494e2ee
- SHA256
  
  35d3cdd891be006eb84a35e0d4b542e5b2a42d62ebe9d3c434c31721ef4ec090
- SHA512
  
  3aa2dc9fff12df83c9ce35548958442eeff266efc684c5022e2138e5b18188ecd6e085e188226cb5044529954594fd081847920222f022f83cb40e448e5e9721
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEh/:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsK
Score

9^/10

discovery ransomware
- Renames multiple (228) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware