cb4f0fed84a97af0b1c1ae49bda30e213ac23a1e22f3af76e15e026bb11995e8 | Triage

Sharing

General

Target

6ad4dd1a1f9b560151dbc908f0d82ab0N.exe
Size

41KB
Sample

240803-h9svns1ele
MD5

6ad4dd1a1f9b560151dbc908f0d82ab0
SHA1

162c58c3bf74ff2bd10b2e3af6e7b2f91736f44d
SHA256

cb4f0fed84a97af0b1c1ae49bda30e213ac23a1e22f3af76e15e026bb11995e8
SHA512

a781b4ab986c383a48e478bd88bdb4c301a129f1f0d943d838ee8f66e6e271e297c50b118ce17c011a922f72ac66aaed3a4103a04e85fb11528de103748e3cc6
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzAQNWQNY:/7BlpQpARFbhNIT9Y

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6ad4dd1a1f9b560151dbc908f0d82ab0N.exe
- Size
  
  41KB
- MD5
  
  6ad4dd1a1f9b560151dbc908f0d82ab0
- SHA1
  
  162c58c3bf74ff2bd10b2e3af6e7b2f91736f44d
- SHA256
  
  cb4f0fed84a97af0b1c1ae49bda30e213ac23a1e22f3af76e15e026bb11995e8
- SHA512
  
  a781b4ab986c383a48e478bd88bdb4c301a129f1f0d943d838ee8f66e6e271e297c50b118ce17c011a922f72ac66aaed3a4103a04e85fb11528de103748e3cc6
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzAQNWQNY:/7BlpQpARFbhNIT9Y
Score

9^/10

discovery ransomware
- Renames multiple (3445) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware