1d9c9bc4f5d6871bc4bdceb7992372caca642080c836d78753ea64520019d2bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7bf9dcd60dbcc755e8d44081817653a0N.exe
Size

55KB
Sample

240805-l7kytstalk
MD5

7bf9dcd60dbcc755e8d44081817653a0
SHA1

965c54e1a703609855022a62be134d2e66ee4f04
SHA256

1d9c9bc4f5d6871bc4bdceb7992372caca642080c836d78753ea64520019d2bd
SHA512

f130f1fd54974adb7b8830a0750dd5024358fb4d64fe9dd99dbd6b343966eff6ae123b703219dadcef39b35767b9ffeddde6edf40846d2c09865e7174b4a1fc3
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0aEMdV8IEMdV85/V:W7ZppApBULcfpHLcfpX2/Nw/Nw4xu

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  7bf9dcd60dbcc755e8d44081817653a0N.exe
- Size
  
  55KB
- MD5
  
  7bf9dcd60dbcc755e8d44081817653a0
- SHA1
  
  965c54e1a703609855022a62be134d2e66ee4f04
- SHA256
  
  1d9c9bc4f5d6871bc4bdceb7992372caca642080c836d78753ea64520019d2bd
- SHA512
  
  f130f1fd54974adb7b8830a0750dd5024358fb4d64fe9dd99dbd6b343966eff6ae123b703219dadcef39b35767b9ffeddde6edf40846d2c09865e7174b4a1fc3
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0aEMdV8IEMdV85/V:W7ZppApBULcfpHLcfpX2/Nw/Nw4xu
Score

9^/10

discovery ransomware
- Renames multiple (3139) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware