b25ea00baef5d6845a926e919407d0f7b062db59ba3e83db8f247bb3f8138cd7 | Triage

Sharing

General

Target

99b1e1cc9eb6150202cf3cfdab182cb0N.exe
Size

43KB
Sample

240802-nn7dts1bne
MD5

99b1e1cc9eb6150202cf3cfdab182cb0
SHA1

8a64320abe00b544e8e5ff78e06e1bd1fb67ee2a
SHA256

b25ea00baef5d6845a926e919407d0f7b062db59ba3e83db8f247bb3f8138cd7
SHA512

4066f621d5fc088916c948e049657f3182a40e28dc316e11df487ba7bb4f90c14f1d6963e1b793cec4dafc4304b75538104fd6bb8f72d2aab52eebc0123b70f3
SSDEEP

768:W7BlpppARFbhbt7Y7wTCIofQOiJfofQOiJh:W7ZppApqHw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  99b1e1cc9eb6150202cf3cfdab182cb0N.exe
- Size
  
  43KB
- MD5
  
  99b1e1cc9eb6150202cf3cfdab182cb0
- SHA1
  
  8a64320abe00b544e8e5ff78e06e1bd1fb67ee2a
- SHA256
  
  b25ea00baef5d6845a926e919407d0f7b062db59ba3e83db8f247bb3f8138cd7
- SHA512
  
  4066f621d5fc088916c948e049657f3182a40e28dc316e11df487ba7bb4f90c14f1d6963e1b793cec4dafc4304b75538104fd6bb8f72d2aab52eebc0123b70f3
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCIofQOiJfofQOiJh:W7ZppApqHw
Score

9^/10

discovery ransomware
- Renames multiple (3313) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware