9f09450187a11b59f8139123a560ccdf36e612cee140140c6033f7964b772da0 | Triage

Sharing

General

Target

edac543888284f2924cad6343f974800N.exe
Size

45KB
Sample

240817-dbne3stape
MD5

edac543888284f2924cad6343f974800
SHA1

ed0b524c68ca6352a8e43aacad5ff6f705544abc
SHA256

9f09450187a11b59f8139123a560ccdf36e612cee140140c6033f7964b772da0
SHA512

e837d7c6ec896c428273cb1b340614d8509e173f6fc45c30a7abb51ee9cbdb622c5f20196123b5230a024eb83a6af35ce1480b99120f235fef451f4b66171058
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66Ce:/7BlpQpARFbhq1KtGFGxNCSNCe

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  edac543888284f2924cad6343f974800N.exe
- Size
  
  45KB
- MD5
  
  edac543888284f2924cad6343f974800
- SHA1
  
  ed0b524c68ca6352a8e43aacad5ff6f705544abc
- SHA256
  
  9f09450187a11b59f8139123a560ccdf36e612cee140140c6033f7964b772da0
- SHA512
  
  e837d7c6ec896c428273cb1b340614d8509e173f6fc45c30a7abb51ee9cbdb622c5f20196123b5230a024eb83a6af35ce1480b99120f235fef451f4b66171058
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66Ce:/7BlpQpARFbhq1KtGFGxNCSNCe
Score

9^/10

discovery ransomware
- Renames multiple (3414) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware