7f3a19142f7da149bc4f86778b77476b3d5922c45b76ea0cdb40d6c38f303b84 | Triage

Sharing

General

Target

409f15e03de4328372235a93c81f2480N.exe
Size

61KB
Sample

240814-lpna8svfng
MD5

409f15e03de4328372235a93c81f2480
SHA1

57b4a3ce858b1fd17ed83168dfcacc90f2743f4b
SHA256

7f3a19142f7da149bc4f86778b77476b3d5922c45b76ea0cdb40d6c38f303b84
SHA512

9d1bc47355ad29a6e6172112dfc67716bfa3f707a5534631e978bc863bd8125e46dc24489702ecf8a98492a78792c37669cde357bc47b23cf99aa7a21705ddfc
SSDEEP

768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nE1016Y/jY:/7ZQpApmi6nAY/jY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  409f15e03de4328372235a93c81f2480N.exe
- Size
  
  61KB
- MD5
  
  409f15e03de4328372235a93c81f2480
- SHA1
  
  57b4a3ce858b1fd17ed83168dfcacc90f2743f4b
- SHA256
  
  7f3a19142f7da149bc4f86778b77476b3d5922c45b76ea0cdb40d6c38f303b84
- SHA512
  
  9d1bc47355ad29a6e6172112dfc67716bfa3f707a5534631e978bc863bd8125e46dc24489702ecf8a98492a78792c37669cde357bc47b23cf99aa7a21705ddfc
- SSDEEP
  
  768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nE1016Y/jY:/7ZQpApmi6nAY/jY
Score

9^/10

discovery ransomware
- Renames multiple (3262) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware