a4273cc15db2776a0b67b495b359ead5811a08b0e026fd2b0d2332179fbc46f7 | Triage

Sharing

General

Target

1c24a35b7909058fcce35fff2a621ae0N.exe
Size

100KB
Sample

240816-1hd7bascnk
MD5

1c24a35b7909058fcce35fff2a621ae0
SHA1

2ced8f36fbab98811b4cf23f033b6840aa11073b
SHA256

a4273cc15db2776a0b67b495b359ead5811a08b0e026fd2b0d2332179fbc46f7
SHA512

468becc0b930f6787b72668ad0eb934b983dd80a3917b59b4676595acc77a64860af84afc7fc9216d6d8c343a3273e64d5ab2aa042ada4b96a085b09a5c160c1
SSDEEP

1536:W7ZDpApYbWjIlE77ufL2e+efZwZQ/8S/80PqPIUpCUpiPB:6DWpwE7oL2e+efZwZ08i8s

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1c24a35b7909058fcce35fff2a621ae0N.exe
- Size
  
  100KB
- MD5
  
  1c24a35b7909058fcce35fff2a621ae0
- SHA1
  
  2ced8f36fbab98811b4cf23f033b6840aa11073b
- SHA256
  
  a4273cc15db2776a0b67b495b359ead5811a08b0e026fd2b0d2332179fbc46f7
- SHA512
  
  468becc0b930f6787b72668ad0eb934b983dd80a3917b59b4676595acc77a64860af84afc7fc9216d6d8c343a3273e64d5ab2aa042ada4b96a085b09a5c160c1
- SSDEEP
  
  1536:W7ZDpApYbWjIlE77ufL2e+efZwZQ/8S/80PqPIUpCUpiPB:6DWpwE7oL2e+efZwZ08i8s
Score

9^/10

discovery ransomware
- Renames multiple (333) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware