3195f6c48ecf5893ab0e075567455ae367435178eb1e50e9956edb582ac3bb05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36355d0e2051f771385455942be697e0N.exe
Size

56KB
Sample

240806-bhtvbsybrh
MD5

36355d0e2051f771385455942be697e0
SHA1

d8b6af360bb228f6c475c092a5f6954dadd95ad1
SHA256

3195f6c48ecf5893ab0e075567455ae367435178eb1e50e9956edb582ac3bb05
SHA512

f42f3b3559513e7f0b7c7ac2738f1c376c40d2dc5939e0f7dbc8ebfd990bd2d4e5df993adeb1af872a18ae4da19dc35769f0f37149f21db69356b4303ad9d169
SSDEEP

1536:W7ZhA7pApt9uw1vo6YEBWqQA/QZl5LenTpnDr5LenTpnD1:6e7WpHusA6YEsq5AL

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  36355d0e2051f771385455942be697e0N.exe
- Size
  
  56KB
- MD5
  
  36355d0e2051f771385455942be697e0
- SHA1
  
  d8b6af360bb228f6c475c092a5f6954dadd95ad1
- SHA256
  
  3195f6c48ecf5893ab0e075567455ae367435178eb1e50e9956edb582ac3bb05
- SHA512
  
  f42f3b3559513e7f0b7c7ac2738f1c376c40d2dc5939e0f7dbc8ebfd990bd2d4e5df993adeb1af872a18ae4da19dc35769f0f37149f21db69356b4303ad9d169
- SSDEEP
  
  1536:W7ZhA7pApt9uw1vo6YEBWqQA/QZl5LenTpnDr5LenTpnD1:6e7WpHusA6YEsq5AL
Score

9^/10

discovery ransomware
- Renames multiple (3150) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware