1221f67e09befe7f1119ccdc20248b6d35c673f10eff2427a07ab683bae050fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec85a182d3d1652924bb93ef047f1ab0N.exe
Size

76KB
Sample

240814-htm99atekr
MD5

ec85a182d3d1652924bb93ef047f1ab0
SHA1

88c0739782755766fcbd18481ba5021b035f041f
SHA256

1221f67e09befe7f1119ccdc20248b6d35c673f10eff2427a07ab683bae050fb
SHA512

17b3df1ad800a452b841943e3f95f71d3331df455ce51929829f6134424278fec590c12db16517a3ce93d9438dc9d261333874f2b495bfb9d7b2c43374e797fe
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPALE:6pWpUnDXxXnLE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ec85a182d3d1652924bb93ef047f1ab0N.exe
- Size
  
  76KB
- MD5
  
  ec85a182d3d1652924bb93ef047f1ab0
- SHA1
  
  88c0739782755766fcbd18481ba5021b035f041f
- SHA256
  
  1221f67e09befe7f1119ccdc20248b6d35c673f10eff2427a07ab683bae050fb
- SHA512
  
  17b3df1ad800a452b841943e3f95f71d3331df455ce51929829f6134424278fec590c12db16517a3ce93d9438dc9d261333874f2b495bfb9d7b2c43374e797fe
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPALE:6pWpUnDXxXnLE
Score

9^/10

discovery ransomware
- Renames multiple (3149) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware