b8ef13a9b3bccc13a0184f7b9e4847941b48f8020b260202e25a1da62847d9d4 | Triage

Sharing

General

Target

0b42360c7d28dbe14a2df92bf0ac0f10N.exe
Size

68KB
Sample

240805-1agbpsyfln
MD5

0b42360c7d28dbe14a2df92bf0ac0f10
SHA1

e628715d0bbd98309a1aa4d36b9f7890e199915c
SHA256

b8ef13a9b3bccc13a0184f7b9e4847941b48f8020b260202e25a1da62847d9d4
SHA512

8655ef29ba082d7d48413af648bcfd13e6cabadb60db057591d63e72e9626d1b8e85febea3578ce8f319417dcf71c0d47a8f6bed15d974bc3783f51649d70e2d
SSDEEP

1536:W7ZhA7pApMNcH6gW4Wvs9s2cic8GhGvn8:6e7WpMNcK9vG1WJ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0b42360c7d28dbe14a2df92bf0ac0f10N.exe
- Size
  
  68KB
- MD5
  
  0b42360c7d28dbe14a2df92bf0ac0f10
- SHA1
  
  e628715d0bbd98309a1aa4d36b9f7890e199915c
- SHA256
  
  b8ef13a9b3bccc13a0184f7b9e4847941b48f8020b260202e25a1da62847d9d4
- SHA512
  
  8655ef29ba082d7d48413af648bcfd13e6cabadb60db057591d63e72e9626d1b8e85febea3578ce8f319417dcf71c0d47a8f6bed15d974bc3783f51649d70e2d
- SSDEEP
  
  1536:W7ZhA7pApMNcH6gW4Wvs9s2cic8GhGvn8:6e7WpMNcK9vG1WJ
Score

9^/10

discovery ransomware
- Renames multiple (3091) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware