fcdb183ac42b2beedac538df10e24f44dd420133d51be58c9097546f9f7a54d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7d6fd11cf63983a3aae71d7e46ed6660N.exe
Size

238KB
Sample

240805-mdkxeatbnj
MD5

7d6fd11cf63983a3aae71d7e46ed6660
SHA1

4e1a33ae5197b9a17a030ddaac752d1fce80433e
SHA256

fcdb183ac42b2beedac538df10e24f44dd420133d51be58c9097546f9f7a54d3
SHA512

b2910a7f602c94841f8926edf9a0e20f74300f5777f94fc8046b3f3cded397849b7b143c6fad43a94b4a54153d9698c325859a8eda9bc9c019bdf2ef055d3a56
SSDEEP

6144:RqlIyFESWu0SWuGSCLzawPS/V9tanWsx298Yfi0F2Zo/:tyFv2I

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  7d6fd11cf63983a3aae71d7e46ed6660N.exe
- Size
  
  238KB
- MD5
  
  7d6fd11cf63983a3aae71d7e46ed6660
- SHA1
  
  4e1a33ae5197b9a17a030ddaac752d1fce80433e
- SHA256
  
  fcdb183ac42b2beedac538df10e24f44dd420133d51be58c9097546f9f7a54d3
- SHA512
  
  b2910a7f602c94841f8926edf9a0e20f74300f5777f94fc8046b3f3cded397849b7b143c6fad43a94b4a54153d9698c325859a8eda9bc9c019bdf2ef055d3a56
- SSDEEP
  
  6144:RqlIyFESWu0SWuGSCLzawPS/V9tanWsx298Yfi0F2Zo/:tyFv2I
Score

9^/10

discovery ransomware
- Renames multiple (224) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware