7ff108859d5ad9eac361620089e7836a0555f77754d188a2b4e02e85596ad772 | Triage

Sharing

General

Target

4889f25d6b5b5899f8ae5b093f70d090N.exe
Size

34KB
Sample

240814-cw7tsazdnl
MD5

4889f25d6b5b5899f8ae5b093f70d090
SHA1

f5eabe0f332f596dcfc94c8e8ae8e24d4c16464a
SHA256

7ff108859d5ad9eac361620089e7836a0555f77754d188a2b4e02e85596ad772
SHA512

470b8df7f237fe95e5f34dc9fee9834730bac13a5554be2f16f4be35e1a8ef4fff7c4b9b527cee970864700369fbbf7c1b81a7366a7589ee10064ed55bef00f6
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLWbLbHLCYC0:W7Blp2sspARFbh5YePx

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4889f25d6b5b5899f8ae5b093f70d090N.exe
- Size
  
  34KB
- MD5
  
  4889f25d6b5b5899f8ae5b093f70d090
- SHA1
  
  f5eabe0f332f596dcfc94c8e8ae8e24d4c16464a
- SHA256
  
  7ff108859d5ad9eac361620089e7836a0555f77754d188a2b4e02e85596ad772
- SHA512
  
  470b8df7f237fe95e5f34dc9fee9834730bac13a5554be2f16f4be35e1a8ef4fff7c4b9b527cee970864700369fbbf7c1b81a7366a7589ee10064ed55bef00f6
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLWbLbHLCYC0:W7Blp2sspARFbh5YePx
Score

9^/10

discovery ransomware
- Renames multiple (3453) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware