3a055059c8255567c0eac53dd5459fd993a26ebdd2427b232a046a4699463a6f | Triage

Sharing

General

Target

2a19b67f11a27259164daca855272110N.exe
Size

95KB
Sample

240803-bentxaxflr
MD5

2a19b67f11a27259164daca855272110
SHA1

1e90bdf1e62f7361e6809a39d5ee12fd4c72e757
SHA256

3a055059c8255567c0eac53dd5459fd993a26ebdd2427b232a046a4699463a6f
SHA512

946c4c0e288e4d4064269ba48a6fd576ed0a60fbbf529df30a1bb2f2930d94131afbdf87055258f09399a55f5cb468d1f6908948f51e784aa55ae50cb4fb829e
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex22tNsO4tNsOB:69WpQE0zUzXvtN54tN5B

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2a19b67f11a27259164daca855272110N.exe
- Size
  
  95KB
- MD5
  
  2a19b67f11a27259164daca855272110
- SHA1
  
  1e90bdf1e62f7361e6809a39d5ee12fd4c72e757
- SHA256
  
  3a055059c8255567c0eac53dd5459fd993a26ebdd2427b232a046a4699463a6f
- SHA512
  
  946c4c0e288e4d4064269ba48a6fd576ed0a60fbbf529df30a1bb2f2930d94131afbdf87055258f09399a55f5cb468d1f6908948f51e784aa55ae50cb4fb829e
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex22tNsO4tNsOB:69WpQE0zUzXvtN54tN5B
Score

9^/10

discovery ransomware
- Renames multiple (2946) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware