dafba00033eaa93371b992a40d992ee2b732b86f8a76a16f06b7fa0d149fb9ef | Triage

Sharing

General

Target

10b0e6c0dbf1cc72c4f9abece2e2f650N.exe
Size

68KB
Sample

240814-rxvm6ssdkk
MD5

10b0e6c0dbf1cc72c4f9abece2e2f650
SHA1

0cdc3c4923ac1c26f06e8d9f629a568886d240a4
SHA256

dafba00033eaa93371b992a40d992ee2b732b86f8a76a16f06b7fa0d149fb9ef
SHA512

df9b87b4227169eb566a8397565dfa1aaacd129053dd44afe75849d3ddc4180266cf1c53f2710d17928fa30f9a8fe7efbb2b353eecbee338dc05c88c7552fd58
SSDEEP

768:W7BlpDpARFbhYQkQzaxkd+axkdo176/hvYaJaMGw4PCs2B24PCs2BHE4JAIAepEK:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSi

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  10b0e6c0dbf1cc72c4f9abece2e2f650N.exe
- Size
  
  68KB
- MD5
  
  10b0e6c0dbf1cc72c4f9abece2e2f650
- SHA1
  
  0cdc3c4923ac1c26f06e8d9f629a568886d240a4
- SHA256
  
  dafba00033eaa93371b992a40d992ee2b732b86f8a76a16f06b7fa0d149fb9ef
- SHA512
  
  df9b87b4227169eb566a8397565dfa1aaacd129053dd44afe75849d3ddc4180266cf1c53f2710d17928fa30f9a8fe7efbb2b353eecbee338dc05c88c7552fd58
- SSDEEP
  
  768:W7BlpDpARFbhYQkQzaxkd+axkdo176/hvYaJaMGw4PCs2B24PCs2BHE4JAIAepEK:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSi
Score

9^/10

discovery ransomware
- Renames multiple (3156) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware