b2345904c8ac932cf567ee1284e8647bfff859de2efc2087a4c80bc241e88ea7 | Triage

Sharing

General

Target

04547160a6c7fd96d93c8cd0100cb880N.exe
Size

59KB
Sample

240801-z8961a1cjc
MD5

04547160a6c7fd96d93c8cd0100cb880
SHA1

1adaa8cf183561ca439d75451b007c77eea79771
SHA256

b2345904c8ac932cf567ee1284e8647bfff859de2efc2087a4c80bc241e88ea7
SHA512

f801aeeeebab164b3a864b41561df5868f311d1d37460eac172b5a800f188baabc0b763fd740180d3e862af1d52f3ffa86b27063ebfdf11a8cf306e6ae1520c3
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwcJdkCKPuJdkCKPRn7JlEJ7e6n7JlU:W7ZppApAJdkCKPuJdkCKPvA2

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  04547160a6c7fd96d93c8cd0100cb880N.exe
- Size
  
  59KB
- MD5
  
  04547160a6c7fd96d93c8cd0100cb880
- SHA1
  
  1adaa8cf183561ca439d75451b007c77eea79771
- SHA256
  
  b2345904c8ac932cf567ee1284e8647bfff859de2efc2087a4c80bc241e88ea7
- SHA512
  
  f801aeeeebab164b3a864b41561df5868f311d1d37460eac172b5a800f188baabc0b763fd740180d3e862af1d52f3ffa86b27063ebfdf11a8cf306e6ae1520c3
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwcJdkCKPuJdkCKPRn7JlEJ7e6n7JlU:W7ZppApAJdkCKPuJdkCKPvA2
Score

9^/10

discovery ransomware
- Renames multiple (3329) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware