52f28f4d56cc574e9821652690f9e188308157ec01b9c97394a50cba03003045 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6df2f28cdd459fbd7a1b76e0a7e5b4f0N.exe
Size

38KB
Sample

240814-c3twhazekj
MD5

6df2f28cdd459fbd7a1b76e0a7e5b4f0
SHA1

de26fae302dceafacddb172d6425875856f81771
SHA256

52f28f4d56cc574e9821652690f9e188308157ec01b9c97394a50cba03003045
SHA512

2c6f6342b8118821fe778473e881456c7bc7648a61683299d1e0543df2c036e787efd6d0aa4fb85d965a9681617202343aa4520533eefd1a683ff1b7cbb2ae83
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzYY52JcuQ2Jcuo:/7BlpQpARFbhNIYYMJceJcf

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6df2f28cdd459fbd7a1b76e0a7e5b4f0N.exe
- Size
  
  38KB
- MD5
  
  6df2f28cdd459fbd7a1b76e0a7e5b4f0
- SHA1
  
  de26fae302dceafacddb172d6425875856f81771
- SHA256
  
  52f28f4d56cc574e9821652690f9e188308157ec01b9c97394a50cba03003045
- SHA512
  
  2c6f6342b8118821fe778473e881456c7bc7648a61683299d1e0543df2c036e787efd6d0aa4fb85d965a9681617202343aa4520533eefd1a683ff1b7cbb2ae83
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzYY52JcuQ2Jcuo:/7BlpQpARFbhNIYYMJceJcf
Score

9^/10

discovery ransomware
- Renames multiple (3277) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware