53dfed322d5fd08d22daf565450259c36622d15023f34d29b9dba250de970a41 | Triage

Sharing

General

Target

3a5672b77110def0c8a2b2ec7986e550N.exe
Size

109KB
Sample

240813-3vbm3awgjm
MD5

3a5672b77110def0c8a2b2ec7986e550
SHA1

670795c3b4341ebe9cb128f2ec866978d4532b77
SHA256

53dfed322d5fd08d22daf565450259c36622d15023f34d29b9dba250de970a41
SHA512

6684e52fd1687557011e804335bf8d77c9a7e2b79a66f42e603e6096dd05de4c8ded88e66f98bcbf28a527194642d22d26ed12e52d22e88c91fd5649682dd4a5
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fmiJjiJbpr:RqKvb0CYJ973e+eKZOf7fZJ+Jbpr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3a5672b77110def0c8a2b2ec7986e550N.exe
- Size
  
  109KB
- MD5
  
  3a5672b77110def0c8a2b2ec7986e550
- SHA1
  
  670795c3b4341ebe9cb128f2ec866978d4532b77
- SHA256
  
  53dfed322d5fd08d22daf565450259c36622d15023f34d29b9dba250de970a41
- SHA512
  
  6684e52fd1687557011e804335bf8d77c9a7e2b79a66f42e603e6096dd05de4c8ded88e66f98bcbf28a527194642d22d26ed12e52d22e88c91fd5649682dd4a5
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fmiJjiJbpr:RqKvb0CYJ973e+eKZOf7fZJ+Jbpr
Score

9^/10

discovery ransomware
- Renames multiple (338) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware