eabaaa72d7413ee6986f88cffa3d6ad289cf32cc2a0d2c565c467767f20b4b03 | Triage

Sharing

General

Target

3da122fa23a9b80a92f102cab6a5bf60N.exe
Size

49KB
Sample

240802-cw1qgazhqj
MD5

3da122fa23a9b80a92f102cab6a5bf60
SHA1

1ad7d126476038fc5bf208c149e3b31775e09bd1
SHA256

eabaaa72d7413ee6986f88cffa3d6ad289cf32cc2a0d2c565c467767f20b4b03
SHA512

1bfd8fd2620f80b06abb98a6bb44c0a8517879bc7d6840e0aeed32ef32d87ebf03f88fbb27ff0b97d8df827351c26ff7a0b79be741baf11b4d068e1a250b76e1
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJwRJofJoTbtm8DUutm8DUA:W7ZppApaJofJopDU6DUA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3da122fa23a9b80a92f102cab6a5bf60N.exe
- Size
  
  49KB
- MD5
  
  3da122fa23a9b80a92f102cab6a5bf60
- SHA1
  
  1ad7d126476038fc5bf208c149e3b31775e09bd1
- SHA256
  
  eabaaa72d7413ee6986f88cffa3d6ad289cf32cc2a0d2c565c467767f20b4b03
- SHA512
  
  1bfd8fd2620f80b06abb98a6bb44c0a8517879bc7d6840e0aeed32ef32d87ebf03f88fbb27ff0b97d8df827351c26ff7a0b79be741baf11b4d068e1a250b76e1
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJwRJofJoTbtm8DUutm8DUA:W7ZppApaJofJopDU6DUA
Score

9^/10

discovery ransomware
- Renames multiple (2859) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware