40e498093f63e6a092b6dacb8edcb85477e3b5ed70c94ec2be531b672dd8b844 | Triage

Sharing

General

Target

5596185abb30ff9d599fceb10a08eeb0N.exe
Size

55KB
Sample

240807-drdktazbpl
MD5

5596185abb30ff9d599fceb10a08eeb0
SHA1

43fa2a33a99454f6ce5836622604f20223c99615
SHA256

40e498093f63e6a092b6dacb8edcb85477e3b5ed70c94ec2be531b672dd8b844
SHA512

9c7415dd43ca15868ecc75104aecddde5422d31361c382807cfdcee8266fd43e5fc9887c8a019cc6a22a644ce54596616afcbe957f1d317f98d1375aac59106a
SSDEEP

768:W7BlpppARFbhknrAqQ/Q6JYAJYMMF/2AxXxXA5X1lT75X1lTV5X1lTH5X1lT75X2:W7ZppApktshJYAJYDVXxXz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5596185abb30ff9d599fceb10a08eeb0N.exe
- Size
  
  55KB
- MD5
  
  5596185abb30ff9d599fceb10a08eeb0
- SHA1
  
  43fa2a33a99454f6ce5836622604f20223c99615
- SHA256
  
  40e498093f63e6a092b6dacb8edcb85477e3b5ed70c94ec2be531b672dd8b844
- SHA512
  
  9c7415dd43ca15868ecc75104aecddde5422d31361c382807cfdcee8266fd43e5fc9887c8a019cc6a22a644ce54596616afcbe957f1d317f98d1375aac59106a
- SSDEEP
  
  768:W7BlpppARFbhknrAqQ/Q6JYAJYMMF/2AxXxXA5X1lT75X1lTV5X1lTH5X1lT75X2:W7ZppApktshJYAJYDVXxXz
Score

9^/10

discovery ransomware
- Renames multiple (3187) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware