5cfb439b8041a4e2df9c4fd667246a0a74f54d5efc925064f09c16c335888685 | Triage

Sharing

General

Target

30c6ed25a6f92aecd6dc2bac0c8bc4d0N.exe
Size

52KB
Sample

240728-b4j71stgmf
MD5

30c6ed25a6f92aecd6dc2bac0c8bc4d0
SHA1

2eac7f5d2afd04298e2daa95d97aa7b97e041ac6
SHA256

5cfb439b8041a4e2df9c4fd667246a0a74f54d5efc925064f09c16c335888685
SHA512

8a0c560e19573c6e51b40b0408a6eab241bc2e7a499eac18b9593b2bea05eb3f0ab521caebe7d1f202c3b128cd0e526aed30a87a6fa25316c8a3fb72912aac9a
SSDEEP

384:GBt7Br5xjL9A7AgA71FbhvcOa5elAa5eluC5c5pYKYm:W7BlphA7pARFbh8QbC5c5p5j

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  30c6ed25a6f92aecd6dc2bac0c8bc4d0N.exe
- Size
  
  52KB
- MD5
  
  30c6ed25a6f92aecd6dc2bac0c8bc4d0
- SHA1
  
  2eac7f5d2afd04298e2daa95d97aa7b97e041ac6
- SHA256
  
  5cfb439b8041a4e2df9c4fd667246a0a74f54d5efc925064f09c16c335888685
- SHA512
  
  8a0c560e19573c6e51b40b0408a6eab241bc2e7a499eac18b9593b2bea05eb3f0ab521caebe7d1f202c3b128cd0e526aed30a87a6fa25316c8a3fb72912aac9a
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71FbhvcOa5elAa5eluC5c5pYKYm:W7BlphA7pARFbh8QbC5c5p5j
Score

9^/10

discovery ransomware
- Renames multiple (939) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware