03ff043ffb7cbbf750a480bcefd23c4e2236ad2a623529f46fd893c140831f4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6abde55ed5de95f662d4297e29b6c5d0N.exe
Size

47KB
Sample

240807-ftfjasvgpd
MD5

6abde55ed5de95f662d4297e29b6c5d0
SHA1

aff0b40bf23d428aaadff83c61ce92910e129d0a
SHA256

03ff043ffb7cbbf750a480bcefd23c4e2236ad2a623529f46fd893c140831f4f
SHA512

17c55a32ad6bd958ff95f77f7ce4a1f131b6582458b5d61a848cdd14bf77da03e570da55e4dccf775282ad87d4e7cec556b0eb6532f8b3c79967d98d57f845af
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0II3ea4TT3ea4TU:/7BlpQpARFbhNIiJwsJwwnZScTcU

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6abde55ed5de95f662d4297e29b6c5d0N.exe
- Size
  
  47KB
- MD5
  
  6abde55ed5de95f662d4297e29b6c5d0
- SHA1
  
  aff0b40bf23d428aaadff83c61ce92910e129d0a
- SHA256
  
  03ff043ffb7cbbf750a480bcefd23c4e2236ad2a623529f46fd893c140831f4f
- SHA512
  
  17c55a32ad6bd958ff95f77f7ce4a1f131b6582458b5d61a848cdd14bf77da03e570da55e4dccf775282ad87d4e7cec556b0eb6532f8b3c79967d98d57f845af
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0II3ea4TT3ea4TU:/7BlpQpARFbhNIiJwsJwwnZScTcU
Score

9^/10

discovery ransomware
- Renames multiple (3262) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware