4e6591fe62c064c0d8a98264f9fbd4d5ff62c77ded5fa7e1fa1c05996b563869 | Triage

Sharing

General

Target

1274fbe0534d4dc9ccb0cf8038825d60N.exe
Size

93KB
Sample

240802-2mwslayamc
MD5

1274fbe0534d4dc9ccb0cf8038825d60
SHA1

3a0e1a86e60d1051f49340dd2466d7237c6b8ae1
SHA256

4e6591fe62c064c0d8a98264f9fbd4d5ff62c77ded5fa7e1fa1c05996b563869
SHA512

0c7e4f79099ccf10abf276d9de840c881f0ab603230c94baed46ca56a30c2e3edf98679ce3cdfe9b245ea1102047bb5bf807ca8f9f4af92fe4425d6d8c4da278
SSDEEP

1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOMETC+cI2Ia:6e7WpXYvnh3a

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1274fbe0534d4dc9ccb0cf8038825d60N.exe
- Size
  
  93KB
- MD5
  
  1274fbe0534d4dc9ccb0cf8038825d60
- SHA1
  
  3a0e1a86e60d1051f49340dd2466d7237c6b8ae1
- SHA256
  
  4e6591fe62c064c0d8a98264f9fbd4d5ff62c77ded5fa7e1fa1c05996b563869
- SHA512
  
  0c7e4f79099ccf10abf276d9de840c881f0ab603230c94baed46ca56a30c2e3edf98679ce3cdfe9b245ea1102047bb5bf807ca8f9f4af92fe4425d6d8c4da278
- SSDEEP
  
  1536:W7ZhA7pApvOsOKjC0YSilpFpfkJOMETC+cI2Ia:6e7WpXYvnh3a
Score

9^/10

discovery ransomware
- Renames multiple (2930) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware