052c63c7ac7abfb8a46573ee399edb3d98f5ab92f9733377dbd45a79fb7c3c02 | Triage

Sharing

General

Target

41c035ddaf46297a63e7efe01df17570N.exe
Size

91KB
Sample

240802-c8wx2swekh
MD5

41c035ddaf46297a63e7efe01df17570
SHA1

edfff9ddfb9e1a955b0cf269a1cce4ae07c34d00
SHA256

052c63c7ac7abfb8a46573ee399edb3d98f5ab92f9733377dbd45a79fb7c3c02
SHA512

c0d52c228ddc4c92715bc3dcc9e4c7b3936e0c8d119579ca17d1437c404e37d4700bc3e15989dae027ba70aeb5d579bba15c1ec1a927272521b1f1d30cca41e5
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhg:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsx

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41c035ddaf46297a63e7efe01df17570N.exe
- Size
  
  91KB
- MD5
  
  41c035ddaf46297a63e7efe01df17570
- SHA1
  
  edfff9ddfb9e1a955b0cf269a1cce4ae07c34d00
- SHA256
  
  052c63c7ac7abfb8a46573ee399edb3d98f5ab92f9733377dbd45a79fb7c3c02
- SHA512
  
  c0d52c228ddc4c92715bc3dcc9e4c7b3936e0c8d119579ca17d1437c404e37d4700bc3e15989dae027ba70aeb5d579bba15c1ec1a927272521b1f1d30cca41e5
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhg:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsx
Score

9^/10

discovery ransomware
- Renames multiple (315) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware