6d1d04cb17f1640b9a89f9ab85997b7d1876da1936e41b5cd643e496a893f3d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

922c9a0868470b864789520a38d0da70N.exe
Size

39KB
Sample

240813-stjbeawcmq
MD5

922c9a0868470b864789520a38d0da70
SHA1

8454a43b47dda7b62949ff2b378d82d3732c98cd
SHA256

6d1d04cb17f1640b9a89f9ab85997b7d1876da1936e41b5cd643e496a893f3d5
SHA512

4146d4a81ac9a55494779922f06fc544ae74c7c4205a333b064e808a00f664898b0e34937fa0821d74c781def60c961f42f63d7be33b64a6a3c730c38a9fb79d
SSDEEP

384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+jnK1q1K1qflYxlYnq:W7Blp+pARFbhBgnKL+LK1KK1RAq

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  922c9a0868470b864789520a38d0da70N.exe
- Size
  
  39KB
- MD5
  
  922c9a0868470b864789520a38d0da70
- SHA1
  
  8454a43b47dda7b62949ff2b378d82d3732c98cd
- SHA256
  
  6d1d04cb17f1640b9a89f9ab85997b7d1876da1936e41b5cd643e496a893f3d5
- SHA512
  
  4146d4a81ac9a55494779922f06fc544ae74c7c4205a333b064e808a00f664898b0e34937fa0821d74c781def60c961f42f63d7be33b64a6a3c730c38a9fb79d
- SSDEEP
  
  384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+jnK1q1K1qflYxlYnq:W7Blp+pARFbhBgnKL+LK1KK1RAq
Score

9^/10

discovery ransomware
- Renames multiple (2851) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware