550d0afa912c5573fa2382371988be84cc3d72d5410906894282c68d82042fd1 | Triage

Sharing

General

Target

b5d0641c0a73cad3678edafec3bbf560N.exe
Size

39KB
Sample

240807-nl8h4sxhrr
MD5

b5d0641c0a73cad3678edafec3bbf560
SHA1

7dd99182228b07ecd052e2b3d61ebc6552e61d7b
SHA256

550d0afa912c5573fa2382371988be84cc3d72d5410906894282c68d82042fd1
SHA512

c1b8a8bbe87f3e4fd92d2cf7fb5bb7be2690b38fc78522c0ccdf622e09bade6b704fcee66f0c9cc2a28b4fc8f0b27564436aeaca329e9fd93e654b763b99dcf1
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFwS:W7Blp2sspARFbhVgNNHpQRNHpQRh

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b5d0641c0a73cad3678edafec3bbf560N.exe
- Size
  
  39KB
- MD5
  
  b5d0641c0a73cad3678edafec3bbf560
- SHA1
  
  7dd99182228b07ecd052e2b3d61ebc6552e61d7b
- SHA256
  
  550d0afa912c5573fa2382371988be84cc3d72d5410906894282c68d82042fd1
- SHA512
  
  c1b8a8bbe87f3e4fd92d2cf7fb5bb7be2690b38fc78522c0ccdf622e09bade6b704fcee66f0c9cc2a28b4fc8f0b27564436aeaca329e9fd93e654b763b99dcf1
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFwS:W7Blp2sspARFbhVgNNHpQRNHpQRh
Score

9^/10

discovery ransomware
- Renames multiple (3460) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware