1618dc2a79b9ac1282f8892597785713431c96ad333b5d262c9233e4abb21c26 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5af2d33885907cb9f46634179d9f6570N.exe
Size

90KB
Sample

240816-3svm6avcne
MD5

5af2d33885907cb9f46634179d9f6570
SHA1

67582c4ae4ff2bca69f3ee683f055012577c97ba
SHA256

1618dc2a79b9ac1282f8892597785713431c96ad333b5d262c9233e4abb21c26
SHA512

f8f6359b537336607d93cf5706547c7a6171febcd15bd2c89c631b62912a8da9e4ebd58282a5693ffb3a3a450dfde15235b0f4244259220b1ccd8b56dad5be79
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhW:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5af2d33885907cb9f46634179d9f6570N.exe
- Size
  
  90KB
- MD5
  
  5af2d33885907cb9f46634179d9f6570
- SHA1
  
  67582c4ae4ff2bca69f3ee683f055012577c97ba
- SHA256
  
  1618dc2a79b9ac1282f8892597785713431c96ad333b5d262c9233e4abb21c26
- SHA512
  
  f8f6359b537336607d93cf5706547c7a6171febcd15bd2c89c631b62912a8da9e4ebd58282a5693ffb3a3a450dfde15235b0f4244259220b1ccd8b56dad5be79
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhW:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsT
Score

9^/10

discovery ransomware
- Renames multiple (338) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware