47bbbb8d82209ecfdc78750a14ce3d2b414016a507e337933994548287bc9311 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

546e8e8aa4d6f5536e5a3363ff33f860N.exe
Size

41KB
Sample

240807-dmancszaqp
MD5

546e8e8aa4d6f5536e5a3363ff33f860
SHA1

9ce64422ae2dee8d3c413599f4cda7a285e2cc69
SHA256

47bbbb8d82209ecfdc78750a14ce3d2b414016a507e337933994548287bc9311
SHA512

8dc056ca42d8e3184a20e98efde7d439ffc66e234c62152198cde8ec1140f0326aa78492d9686d71fd885acc7f7570d80a1b043072e9794e1b049af5a92f2751
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFwWnm:W7Blp2sspARFbhVgNNHpQRNHpQRO

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  546e8e8aa4d6f5536e5a3363ff33f860N.exe
- Size
  
  41KB
- MD5
  
  546e8e8aa4d6f5536e5a3363ff33f860
- SHA1
  
  9ce64422ae2dee8d3c413599f4cda7a285e2cc69
- SHA256
  
  47bbbb8d82209ecfdc78750a14ce3d2b414016a507e337933994548287bc9311
- SHA512
  
  8dc056ca42d8e3184a20e98efde7d439ffc66e234c62152198cde8ec1140f0326aa78492d9686d71fd885acc7f7570d80a1b043072e9794e1b049af5a92f2751
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFwWnm:W7Blp2sspARFbhVgNNHpQRNHpQRO
Score

9^/10

discovery ransomware
- Renames multiple (3434) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware