0b8b97009c2c4da5f71e85daf6524723d555b130313178493ac6bdb1a38f25c3 | Triage

Sharing

General

Target

705b2be48b2c398c80f195d1ffc72d90N.exe
Size

40KB
Sample

240814-q1alqsvfrf
MD5

705b2be48b2c398c80f195d1ffc72d90
SHA1

8a0424a8ebd55cf8830ecbce7ba936783c732d67
SHA256

0b8b97009c2c4da5f71e85daf6524723d555b130313178493ac6bdb1a38f25c3
SHA512

ce40c56ae1a99684bb87f9145614e99652d42e9b692415d727c0b9b89a68c8aaae04f1d1a6c203b3e497c06441ff6aee3a26e65d63b0aa9e4ec456acf6985751
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42Lcfpb2N231F1H:W7ZppApBULcfpHLcfpSo3fJ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  705b2be48b2c398c80f195d1ffc72d90N.exe
- Size
  
  40KB
- MD5
  
  705b2be48b2c398c80f195d1ffc72d90
- SHA1
  
  8a0424a8ebd55cf8830ecbce7ba936783c732d67
- SHA256
  
  0b8b97009c2c4da5f71e85daf6524723d555b130313178493ac6bdb1a38f25c3
- SHA512
  
  ce40c56ae1a99684bb87f9145614e99652d42e9b692415d727c0b9b89a68c8aaae04f1d1a6c203b3e497c06441ff6aee3a26e65d63b0aa9e4ec456acf6985751
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42Lcfpb2N231F1H:W7ZppApBULcfpHLcfpSo3fJ
Score

9^/10

discovery ransomware
- Renames multiple (3297) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware