f6b76ab9bd65d1edea17f4152427dfb50c69f659f0ec14c11af91f1d5c86ca2c | Triage

Sharing

General

Target

cc5604c8e91d439c459871963fbadd50N.exe
Size

46KB
Sample

240802-zmw29azcjr
MD5

cc5604c8e91d439c459871963fbadd50
SHA1

b604a0438d3d93e5ded3b018365ffdbd7751e5bd
SHA256

f6b76ab9bd65d1edea17f4152427dfb50c69f659f0ec14c11af91f1d5c86ca2c
SHA512

2afaed2bbbf5e3d6bf05a8e553e595179dd86dfe681c034e3c2c51d730d16d711abafe5e103d5e39c6c4acc86bea126fa1e4393ea45fc6989d674a06393c1704
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyokB:W7ZppApyVyjVyP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cc5604c8e91d439c459871963fbadd50N.exe
- Size
  
  46KB
- MD5
  
  cc5604c8e91d439c459871963fbadd50
- SHA1
  
  b604a0438d3d93e5ded3b018365ffdbd7751e5bd
- SHA256
  
  f6b76ab9bd65d1edea17f4152427dfb50c69f659f0ec14c11af91f1d5c86ca2c
- SHA512
  
  2afaed2bbbf5e3d6bf05a8e553e595179dd86dfe681c034e3c2c51d730d16d711abafe5e103d5e39c6c4acc86bea126fa1e4393ea45fc6989d674a06393c1704
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyokB:W7ZppApyVyjVyP
Score

9^/10

discovery ransomware
- Renames multiple (3168) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware