e67efa169a1d2e25141a4b83616474c90cb9e215609d2052fa66d467a6244fe7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

864780c3bfb3f858695959432ca92690N.exe
Size

64KB
Sample

240806-ksqp4ayerh
MD5

864780c3bfb3f858695959432ca92690
SHA1

fd7d5b16c4b1b2ab9974a0f3bc72fbfc7394227e
SHA256

e67efa169a1d2e25141a4b83616474c90cb9e215609d2052fa66d467a6244fe7
SHA512

8d34ca285a52df6a072b8fa496b8e0bceb02e0367597135fc54d83bc6468ba93a7001763bcf5917e1958076064e6f005d62d22bab363ceb49a504e76d3a8e86a
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPm:6pWpUnDXxX5

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  864780c3bfb3f858695959432ca92690N.exe
- Size
  
  64KB
- MD5
  
  864780c3bfb3f858695959432ca92690
- SHA1
  
  fd7d5b16c4b1b2ab9974a0f3bc72fbfc7394227e
- SHA256
  
  e67efa169a1d2e25141a4b83616474c90cb9e215609d2052fa66d467a6244fe7
- SHA512
  
  8d34ca285a52df6a072b8fa496b8e0bceb02e0367597135fc54d83bc6468ba93a7001763bcf5917e1958076064e6f005d62d22bab363ceb49a504e76d3a8e86a
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPm:6pWpUnDXxX5
Score

9^/10

discovery ransomware
- Renames multiple (3168) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware