160169757a725be1e2585f25422e875b68ade5e6c3cebf6dd5a300fbf25c5b2c | Triage

Sharing

General

Target

8faf426920c4de23afa6bec402d80070N.exe
Size

194KB
Sample

240814-wyytfawfqe
MD5

8faf426920c4de23afa6bec402d80070
SHA1

e92758de62280fa213c86e6854af7aae8786ac4e
SHA256

160169757a725be1e2585f25422e875b68ade5e6c3cebf6dd5a300fbf25c5b2c
SHA512

02ba74a446ee9b3b353245a5fe29ec6b4548234231e802fb6a3b51860237d8531fcab63a54917089e72365b56680ccf57e58daf1ad017c5d3edf36ae9e1dd0fb
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkZ:RqKB+tOkWKR0iJ0lTzkZ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8faf426920c4de23afa6bec402d80070N.exe
- Size
  
  194KB
- MD5
  
  8faf426920c4de23afa6bec402d80070
- SHA1
  
  e92758de62280fa213c86e6854af7aae8786ac4e
- SHA256
  
  160169757a725be1e2585f25422e875b68ade5e6c3cebf6dd5a300fbf25c5b2c
- SHA512
  
  02ba74a446ee9b3b353245a5fe29ec6b4548234231e802fb6a3b51860237d8531fcab63a54917089e72365b56680ccf57e58daf1ad017c5d3edf36ae9e1dd0fb
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkZ:RqKB+tOkWKR0iJ0lTzkZ
Score

9^/10

discovery ransomware
- Renames multiple (2622) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware