03a733224c0deb29c500bd2623479dc9a1b77a805c7619a46bcba2b5bbd67095 | Triage

Sharing

General

Target

70347bd4e19cc184e521cc442590ecc0N.exe
Size

166KB
Sample

240806-hcwkaswcqh
MD5

70347bd4e19cc184e521cc442590ecc0
SHA1

86e69e5b4f0bbe379ad6a2de694c764f2f75587c
SHA256

03a733224c0deb29c500bd2623479dc9a1b77a805c7619a46bcba2b5bbd67095
SHA512

4547614a30f9d0de0419d22ec070a44660d4afe46b218ccdb326175966a6f4708f12918594db4dd1f597923e5b2209b34d8f639c4980f8484ae0a2bf22bf9497
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBn:RqKB+tOkWKR0iJ0b

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  70347bd4e19cc184e521cc442590ecc0N.exe
- Size
  
  166KB
- MD5
  
  70347bd4e19cc184e521cc442590ecc0
- SHA1
  
  86e69e5b4f0bbe379ad6a2de694c764f2f75587c
- SHA256
  
  03a733224c0deb29c500bd2623479dc9a1b77a805c7619a46bcba2b5bbd67095
- SHA512
  
  4547614a30f9d0de0419d22ec070a44660d4afe46b218ccdb326175966a6f4708f12918594db4dd1f597923e5b2209b34d8f639c4980f8484ae0a2bf22bf9497
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBn:RqKB+tOkWKR0iJ0b
Score

9^/10

discovery ransomware
- Renames multiple (2795) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware