30ed1ec1f20a5a39a5fda101651755b410d7cc9477c6946bbe2861a062f42f9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93f1861bd86690bd15e55d3b5fe7c9b0N.exe
Size

44KB
Sample

240806-mal1aszhpb
MD5

93f1861bd86690bd15e55d3b5fe7c9b0
SHA1

6d260da20bb7d0e2dc469484274c65a9639a321c
SHA256

30ed1ec1f20a5a39a5fda101651755b410d7cc9477c6946bbe2861a062f42f9a
SHA512

2ff649add5d3c68de4e84af03e11092cec02050583415e69b9ae085dba3fb5c998fa56ff0690e9f32b229655a49d6e7b1bf000ad15555923da0c4edf824e4568
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFXpK5c5W:W7ZppApBULcfpHLcfpyDA6o

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  93f1861bd86690bd15e55d3b5fe7c9b0N.exe
- Size
  
  44KB
- MD5
  
  93f1861bd86690bd15e55d3b5fe7c9b0
- SHA1
  
  6d260da20bb7d0e2dc469484274c65a9639a321c
- SHA256
  
  30ed1ec1f20a5a39a5fda101651755b410d7cc9477c6946bbe2861a062f42f9a
- SHA512
  
  2ff649add5d3c68de4e84af03e11092cec02050583415e69b9ae085dba3fb5c998fa56ff0690e9f32b229655a49d6e7b1bf000ad15555923da0c4edf824e4568
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFXpK5c5W:W7ZppApBULcfpHLcfpyDA6o
Score

9^/10

discovery ransomware
- Renames multiple (3375) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware