18411ba519cbed985ca0e83e4368614c1e7189e62e59480e076a81e2eb443f5a | Triage

Sharing

General

Target

a7c5636edfc1bdaacf016c68c8030040N.exe
Size

46KB
Sample

240817-gs7rtstgkm
MD5

a7c5636edfc1bdaacf016c68c8030040
SHA1

479d07a98eb8e1b7f7f1b0c1cb1d8876bb887d8c
SHA256

18411ba519cbed985ca0e83e4368614c1e7189e62e59480e076a81e2eb443f5a
SHA512

9a5885bc793f0965b9bcf5191b7e61ab38cfc6435b5a593b5739a45034e029c400188da7281194a5783203b2e4024cc7306621b635ec7799bc9469b792f4a798
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBN10wpAp/lvolGClvolGgFpdpllFE2lFENcjZjc:W7BlpppARFbhbt7Y7eDDESENF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a7c5636edfc1bdaacf016c68c8030040N.exe
- Size
  
  46KB
- MD5
  
  a7c5636edfc1bdaacf016c68c8030040
- SHA1
  
  479d07a98eb8e1b7f7f1b0c1cb1d8876bb887d8c
- SHA256
  
  18411ba519cbed985ca0e83e4368614c1e7189e62e59480e076a81e2eb443f5a
- SHA512
  
  9a5885bc793f0965b9bcf5191b7e61ab38cfc6435b5a593b5739a45034e029c400188da7281194a5783203b2e4024cc7306621b635ec7799bc9469b792f4a798
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBN10wpAp/lvolGClvolGgFpdpllFE2lFENcjZjc:W7BlpppARFbhbt7Y7eDDESENF
Score

9^/10

discovery ransomware
- Renames multiple (3221) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware