0fc3b06bb652b04193a8ff1491d46d5e9c18e90220b3a1ee090197ccc09b8fb5 | Triage

Sharing

General

Target

6bf3a2b4f617bb49244927fcd8519950N.exe
Size

38KB
Sample

240803-jdpzkswhjq
MD5

6bf3a2b4f617bb49244927fcd8519950
SHA1

a3d518a69959a0da7882a8c15cc255b2fe0cff4b
SHA256

0fc3b06bb652b04193a8ff1491d46d5e9c18e90220b3a1ee090197ccc09b8fb5
SHA512

6007e67711bebc46c045e35cf55aa88bbecc2a57fb09744830266b6a5254a38862627fd24c2c5d4810726c8a35ae76d107b4f638436db9044bb86c21861bd14a
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLD:W7ZppApBULcfpHLcfpyDo

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6bf3a2b4f617bb49244927fcd8519950N.exe
- Size
  
  38KB
- MD5
  
  6bf3a2b4f617bb49244927fcd8519950
- SHA1
  
  a3d518a69959a0da7882a8c15cc255b2fe0cff4b
- SHA256
  
  0fc3b06bb652b04193a8ff1491d46d5e9c18e90220b3a1ee090197ccc09b8fb5
- SHA512
  
  6007e67711bebc46c045e35cf55aa88bbecc2a57fb09744830266b6a5254a38862627fd24c2c5d4810726c8a35ae76d107b4f638436db9044bb86c21861bd14a
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLD:W7ZppApBULcfpHLcfpyDo
Score

9^/10

discovery ransomware
- Renames multiple (3441) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware