e75c53f4c0c9e45997ff3cca907ee523e9970ed5e1e4038ef82353b41dabf0f7 | Triage

Sharing

General

Target

5c2832d4d0d9f356a20bc35b684e3300N.exe
Size

2.3MB
Sample

240802-fwz1qasfjb
MD5

5c2832d4d0d9f356a20bc35b684e3300
SHA1

6f9edbe1d74fc0adb1aa6ce99a0a35f747dfc89f
SHA256

e75c53f4c0c9e45997ff3cca907ee523e9970ed5e1e4038ef82353b41dabf0f7
SHA512

39cd11fbc584e53f05a4867b422af5da33e62261a23c206af053a3a2590ac55a494bf6ae115fc0a37f7f7c115be09208a1133d836f521683fb6b3b412f86e2af
SSDEEP

49152:xJWQFoNRlYmCEruP5m9lMJWQFoNRlYmCEqv:x08oNRJX9lM08oNRsv

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5c2832d4d0d9f356a20bc35b684e3300N.exe
- Size
  
  2.3MB
- MD5
  
  5c2832d4d0d9f356a20bc35b684e3300
- SHA1
  
  6f9edbe1d74fc0adb1aa6ce99a0a35f747dfc89f
- SHA256
  
  e75c53f4c0c9e45997ff3cca907ee523e9970ed5e1e4038ef82353b41dabf0f7
- SHA512
  
  39cd11fbc584e53f05a4867b422af5da33e62261a23c206af053a3a2590ac55a494bf6ae115fc0a37f7f7c115be09208a1133d836f521683fb6b3b412f86e2af
- SSDEEP
  
  49152:xJWQFoNRlYmCEruP5m9lMJWQFoNRlYmCEqv:x08oNRJX9lM08oNRsv
Score

9^/10

discovery ransomware
- Renames multiple (226) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware