5d7c600729a97db40def4c4d0b3767767b2599ee5e14f09f8194ab7e5719b6db | Triage

Sharing

General

Target

4bfe598bdb3f00337d565e368f43f370N.exe
Size

45KB
Sample

240806-dfl3ta1frc
MD5

4bfe598bdb3f00337d565e368f43f370
SHA1

e998eb9ebcb3bc94fb702153ef42a89c4fe88b50
SHA256

5d7c600729a97db40def4c4d0b3767767b2599ee5e14f09f8194ab7e5719b6db
SHA512

5ce77d932e8fd99e429bb45d7b26bcd00da8a4e060155ec7154a88da7f80bce0539f0a1662e4e5e3d423f163ef0f3cab99d40a4de2370631db54a1c12537f612
SSDEEP

768:W7BlpppARFbhknrzzA8JQ2AdJCzA8JQ2AdJcUYU+VD6NVD6X:W7ZppApkxUYU+VD6NVD6X

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4bfe598bdb3f00337d565e368f43f370N.exe
- Size
  
  45KB
- MD5
  
  4bfe598bdb3f00337d565e368f43f370
- SHA1
  
  e998eb9ebcb3bc94fb702153ef42a89c4fe88b50
- SHA256
  
  5d7c600729a97db40def4c4d0b3767767b2599ee5e14f09f8194ab7e5719b6db
- SHA512
  
  5ce77d932e8fd99e429bb45d7b26bcd00da8a4e060155ec7154a88da7f80bce0539f0a1662e4e5e3d423f163ef0f3cab99d40a4de2370631db54a1c12537f612
- SSDEEP
  
  768:W7BlpppARFbhknrzzA8JQ2AdJCzA8JQ2AdJcUYU+VD6NVD6X:W7ZppApkxUYU+VD6NVD6X
Score

9^/10

discovery ransomware
- Renames multiple (448) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware