464ee1fa0691f103a92e68a329a1443269f5a32326b3f856b5451db80bed85fd | Triage

Sharing

General

Target

45215285330c6edc6bcdb61c6107c620N.exe
Size

88KB
Sample

240802-dhy56asdml
MD5

45215285330c6edc6bcdb61c6107c620
SHA1

c1e491ae54a9c1844928685c4026d7e57ea148ea
SHA256

464ee1fa0691f103a92e68a329a1443269f5a32326b3f856b5451db80bed85fd
SHA512

faf0aa904432085d322ccbac5c62f31485a91368fe2e585c1e2a9401ae6ca2c19100cd8b9d56e7ec88992579b46035f3890aaae3934f99ddf60b9b98c870da49
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhA:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsh

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  45215285330c6edc6bcdb61c6107c620N.exe
- Size
  
  88KB
- MD5
  
  45215285330c6edc6bcdb61c6107c620
- SHA1
  
  c1e491ae54a9c1844928685c4026d7e57ea148ea
- SHA256
  
  464ee1fa0691f103a92e68a329a1443269f5a32326b3f856b5451db80bed85fd
- SHA512
  
  faf0aa904432085d322ccbac5c62f31485a91368fe2e585c1e2a9401ae6ca2c19100cd8b9d56e7ec88992579b46035f3890aaae3934f99ddf60b9b98c870da49
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhA:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsh
Score

9^/10

discovery ransomware
- Renames multiple (332) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware