3e3b974627f0f5887361f77b7f010732b57e2553e8c276519489426bca93ce51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a34dad717eada25eaacc6cc8f8d98390N.exe
Size

99KB
Sample

240817-hqq7qswcrl
MD5

a34dad717eada25eaacc6cc8f8d98390
SHA1

b165a050bf96698e6355c49ad6edb7a6382f5871
SHA256

3e3b974627f0f5887361f77b7f010732b57e2553e8c276519489426bca93ce51
SHA512

59fa9c608b7a31473faecc933a7a36c8120a57f8e957b121575617bed576a0fa9400cdc5e7b82ba9e01602455e1d874f67e53bd3414b8829933e815527ee5144
SSDEEP

3072:69WpQEoTdc6e6kvNDck7Tdc6e6kvNDcksh/UxYnMY:nSTdc6e6kvNDck7Tdc6e6kvNDckyUxY9

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a34dad717eada25eaacc6cc8f8d98390N.exe
- Size
  
  99KB
- MD5
  
  a34dad717eada25eaacc6cc8f8d98390
- SHA1
  
  b165a050bf96698e6355c49ad6edb7a6382f5871
- SHA256
  
  3e3b974627f0f5887361f77b7f010732b57e2553e8c276519489426bca93ce51
- SHA512
  
  59fa9c608b7a31473faecc933a7a36c8120a57f8e957b121575617bed576a0fa9400cdc5e7b82ba9e01602455e1d874f67e53bd3414b8829933e815527ee5144
- SSDEEP
  
  3072:69WpQEoTdc6e6kvNDck7Tdc6e6kvNDcksh/UxYnMY:nSTdc6e6kvNDck7Tdc6e6kvNDckyUxY9
Score

9^/10

discovery ransomware
- Renames multiple (3071) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware