c5c8b97a6b75479366a6e77ecf3db77ed38872e088bfac85d069f73fc995ca3a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9295704b73a46a8ca4dc73ed0c935ec0N.exe
Size

61KB
Sample

240805-qbn3ts1ajg
MD5

9295704b73a46a8ca4dc73ed0c935ec0
SHA1

bb68527b1b2f092a0c3a42e614fae011a637ccac
SHA256

c5c8b97a6b75479366a6e77ecf3db77ed38872e088bfac85d069f73fc995ca3a
SHA512

92064c7b7e74093c00ef67dc391d9b4b15a6b902a84e79542f746c1b5e03e82ab90e5b02317e593ec61034a2ff27d5e60cb6d7b8ce6ee5b8fa0e936082b582cd
SSDEEP

768:W7Blp2sspARFbhJpupZ5pZ4+fTgTvlK1lK6RZR+8/8gClurYClurm:W7Z2sspApkZrZ4+fU7lK1lKT8/8U

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9295704b73a46a8ca4dc73ed0c935ec0N.exe
- Size
  
  61KB
- MD5
  
  9295704b73a46a8ca4dc73ed0c935ec0
- SHA1
  
  bb68527b1b2f092a0c3a42e614fae011a637ccac
- SHA256
  
  c5c8b97a6b75479366a6e77ecf3db77ed38872e088bfac85d069f73fc995ca3a
- SHA512
  
  92064c7b7e74093c00ef67dc391d9b4b15a6b902a84e79542f746c1b5e03e82ab90e5b02317e593ec61034a2ff27d5e60cb6d7b8ce6ee5b8fa0e936082b582cd
- SSDEEP
  
  768:W7Blp2sspARFbhJpupZ5pZ4+fTgTvlK1lK6RZR+8/8gClurYClurm:W7Z2sspApkZrZ4+fU7lK1lKT8/8U
Score

9^/10

discovery ransomware
- Renames multiple (3082) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware