1989f488098ff0cb88a55f7e0405ef2c5d985a3ff0f2f10c2db2568fced5d830 | Triage

Sharing

General

Target

b88fceb4d6737aa3c7f4e91aaf879810N.exe
Size

103KB
Sample

240805-v7shcaxand
MD5

b88fceb4d6737aa3c7f4e91aaf879810
SHA1

f27ecbc8dd359daa56980f7060f3fc3373af7581
SHA256

1989f488098ff0cb88a55f7e0405ef2c5d985a3ff0f2f10c2db2568fced5d830
SHA512

615394de05259790d7ef8ad70c49fb83b724bbc7462ad18689c88164ab07b22665c25cf879ab90852930d03002cc55b77ffbb15e7473515b974a9eb59c10d64a
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBL:PqFF2Ie+efsim24

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b88fceb4d6737aa3c7f4e91aaf879810N.exe
- Size
  
  103KB
- MD5
  
  b88fceb4d6737aa3c7f4e91aaf879810
- SHA1
  
  f27ecbc8dd359daa56980f7060f3fc3373af7581
- SHA256
  
  1989f488098ff0cb88a55f7e0405ef2c5d985a3ff0f2f10c2db2568fced5d830
- SHA512
  
  615394de05259790d7ef8ad70c49fb83b724bbc7462ad18689c88164ab07b22665c25cf879ab90852930d03002cc55b77ffbb15e7473515b974a9eb59c10d64a
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBL:PqFF2Ie+efsim24
Score

9^/10

discovery ransomware
- Renames multiple (2948) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware