1b2fc808838de988d4e26236c2ccfb47dbb297a47449ff432ce1400fd0e11ee1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d99679c7b7a2022307847d9f654a7d70N.exe
Size

139KB
Sample

240814-s2zy5azfnd
MD5

d99679c7b7a2022307847d9f654a7d70
SHA1

f30ff6b80eef677e6f6b8fb9c8840a85a1ca1914
SHA256

1b2fc808838de988d4e26236c2ccfb47dbb297a47449ff432ce1400fd0e11ee1
SHA512

b6d50201a85d439a39f7e40e88e1f87f441041fe8e19724bdbb0833397d49e0fee1d9f140f59294992990746d4a4ec73c2040a32bd62ca6d4eacd96b89af9139
SSDEEP

3072:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0s8P43Nb0:RqlIyFESWu0SWu2s8P43K

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d99679c7b7a2022307847d9f654a7d70N.exe
- Size
  
  139KB
- MD5
  
  d99679c7b7a2022307847d9f654a7d70
- SHA1
  
  f30ff6b80eef677e6f6b8fb9c8840a85a1ca1914
- SHA256
  
  1b2fc808838de988d4e26236c2ccfb47dbb297a47449ff432ce1400fd0e11ee1
- SHA512
  
  b6d50201a85d439a39f7e40e88e1f87f441041fe8e19724bdbb0833397d49e0fee1d9f140f59294992990746d4a4ec73c2040a32bd62ca6d4eacd96b89af9139
- SSDEEP
  
  3072:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0s8P43Nb0:RqlIyFESWu0SWu2s8P43K
Score

9^/10

discovery ransomware
- Renames multiple (2855) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware