2de31aab3b350898ebc09c80983d9ca1c167528362bbaeb91e9644c2cba19f56 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cb2fbf9959528261d3d14bc421c2fa0N.exe
Size

97KB
Sample

240814-pqmymsscra
MD5

6cb2fbf9959528261d3d14bc421c2fa0
SHA1

6fad59eddd2e1229e74baec3c0448d65ad6f4492
SHA256

2de31aab3b350898ebc09c80983d9ca1c167528362bbaeb91e9644c2cba19f56
SHA512

d7b213dfc9a56830c4b8555bc7607b4ca0f7ee55d59ebae6c839b955a578830f6a45e6dd56ebc505bf54f509544ac6e56ad42fc054a6486e632dd102749b7e95
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fY:RqKvb0CYJ973e+eKZOf7fY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6cb2fbf9959528261d3d14bc421c2fa0N.exe
- Size
  
  97KB
- MD5
  
  6cb2fbf9959528261d3d14bc421c2fa0
- SHA1
  
  6fad59eddd2e1229e74baec3c0448d65ad6f4492
- SHA256
  
  2de31aab3b350898ebc09c80983d9ca1c167528362bbaeb91e9644c2cba19f56
- SHA512
  
  d7b213dfc9a56830c4b8555bc7607b4ca0f7ee55d59ebae6c839b955a578830f6a45e6dd56ebc505bf54f509544ac6e56ad42fc054a6486e632dd102749b7e95
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fY:RqKvb0CYJ973e+eKZOf7fY
Score

9^/10

discovery ransomware
- Renames multiple (3154) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware