f856fe8153ab2c4d054a46c1f066479ea3f2bc6d174df937703248d2aa9412e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae0d2afe8b0f9527510a30ae06b49600N.exe
Size

45KB
Sample

240813-vh5flszgjp
MD5

ae0d2afe8b0f9527510a30ae06b49600
SHA1

36ddbcc63fd81a79415825aeb697de917fdee702
SHA256

f856fe8153ab2c4d054a46c1f066479ea3f2bc6d174df937703248d2aa9412e5
SHA512

8942f5d62a08d4bc999e45b5046332f003bee740ef7d0c42c7a93a3b85dd62df1aab1c1a0018c99b2afbd2dca26edb7ea8b936ddf4df378b9dad8edcb872dd1c
SSDEEP

768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzEemdGwmdGw:W7Z2sspAp5YSfffdmdGwmdGw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ae0d2afe8b0f9527510a30ae06b49600N.exe
- Size
  
  45KB
- MD5
  
  ae0d2afe8b0f9527510a30ae06b49600
- SHA1
  
  36ddbcc63fd81a79415825aeb697de917fdee702
- SHA256
  
  f856fe8153ab2c4d054a46c1f066479ea3f2bc6d174df937703248d2aa9412e5
- SHA512
  
  8942f5d62a08d4bc999e45b5046332f003bee740ef7d0c42c7a93a3b85dd62df1aab1c1a0018c99b2afbd2dca26edb7ea8b936ddf4df378b9dad8edcb872dd1c
- SSDEEP
  
  768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzEemdGwmdGw:W7Z2sspAp5YSfffdmdGwmdGw
Score

9^/10

discovery ransomware
- Renames multiple (3257) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware