d4b50a2f2605791013eb23b3edbd37b59a7813b0d2ac9022beb20efe12b8f0ae | Triage

Sharing

General

Target

6393ac55d78684ca32f8c7fa72853d20N.exe
Size

44KB
Sample

240802-glz4eatgqh
MD5

6393ac55d78684ca32f8c7fa72853d20
SHA1

c994f356b883072b74d6a7d36ce8d068a3b5afa1
SHA256

d4b50a2f2605791013eb23b3edbd37b59a7813b0d2ac9022beb20efe12b8f0ae
SHA512

ab98031e2540b12146ea6ea39bb919e5c699a655fcf346543681e40747a76166785f10bd2ea18b0170499700d88a6e79427097667242edae61c599ec261b8615
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAW:W7ZppApBULcfpHLcfpyDoAW

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6393ac55d78684ca32f8c7fa72853d20N.exe
- Size
  
  44KB
- MD5
  
  6393ac55d78684ca32f8c7fa72853d20
- SHA1
  
  c994f356b883072b74d6a7d36ce8d068a3b5afa1
- SHA256
  
  d4b50a2f2605791013eb23b3edbd37b59a7813b0d2ac9022beb20efe12b8f0ae
- SHA512
  
  ab98031e2540b12146ea6ea39bb919e5c699a655fcf346543681e40747a76166785f10bd2ea18b0170499700d88a6e79427097667242edae61c599ec261b8615
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAW:W7ZppApBULcfpHLcfpyDoAW
Score

9^/10

discovery ransomware
- Renames multiple (3268) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware