1514af646f19a9463f0b06ed69df94b354dbd2979c22b80f0ad49ae02d925506 | Triage

Sharing

General

Target

a5618b9e920bb0df8e3c0a7e419d8780N.exe
Size

194KB
Sample

240814-k6ke8syfjq
MD5

a5618b9e920bb0df8e3c0a7e419d8780
SHA1

d5457f297f057d977d3aae202a8897b8cdb24453
SHA256

1514af646f19a9463f0b06ed69df94b354dbd2979c22b80f0ad49ae02d925506
SHA512

65a25e2c3c104d1dfd2117997068e93bb4cdf8bf5f3d7b45978c44caab3567f1a04f3aff57ca054054a38060339d8ba157b37eca8f17801321a31c5921848a6f
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkB:RqKB+tOkWKR0iJ0lTzkB

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a5618b9e920bb0df8e3c0a7e419d8780N.exe
- Size
  
  194KB
- MD5
  
  a5618b9e920bb0df8e3c0a7e419d8780
- SHA1
  
  d5457f297f057d977d3aae202a8897b8cdb24453
- SHA256
  
  1514af646f19a9463f0b06ed69df94b354dbd2979c22b80f0ad49ae02d925506
- SHA512
  
  65a25e2c3c104d1dfd2117997068e93bb4cdf8bf5f3d7b45978c44caab3567f1a04f3aff57ca054054a38060339d8ba157b37eca8f17801321a31c5921848a6f
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkB:RqKB+tOkWKR0iJ0lTzkB
Score

9^/10

discovery ransomware
- Renames multiple (2743) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware