be81b6175de89ed930e806708b2e31f4e7c762677580d163faffcf965fdf2f14 | Triage

Sharing

General

Target

b0ff4bda7638471fed3f188c903883a0N.exe
Size

67KB
Sample

240817-l9y88stbqm
MD5

b0ff4bda7638471fed3f188c903883a0
SHA1

c212f19276ff76267bc4902e96f2992c2cfa5d57
SHA256

be81b6175de89ed930e806708b2e31f4e7c762677580d163faffcf965fdf2f14
SHA512

eefcfaf9d511539a735f98ba0dbf62ceb75517e5d121c9161d4b7757c07e5d34c1add2b24219f23b07b85c1b8e311f0dc5c6b33102e5ce0a5c00c5388a1e8b6f
SSDEEP

1536:/7ZQpApze+eJfFpsJOfFpsJ9VD6NVD6GUhYTYk:9QWpze+eJfFpsJOfFpsJjub8k

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b0ff4bda7638471fed3f188c903883a0N.exe
- Size
  
  67KB
- MD5
  
  b0ff4bda7638471fed3f188c903883a0
- SHA1
  
  c212f19276ff76267bc4902e96f2992c2cfa5d57
- SHA256
  
  be81b6175de89ed930e806708b2e31f4e7c762677580d163faffcf965fdf2f14
- SHA512
  
  eefcfaf9d511539a735f98ba0dbf62ceb75517e5d121c9161d4b7757c07e5d34c1add2b24219f23b07b85c1b8e311f0dc5c6b33102e5ce0a5c00c5388a1e8b6f
- SSDEEP
  
  1536:/7ZQpApze+eJfFpsJOfFpsJ9VD6NVD6GUhYTYk:9QWpze+eJfFpsJOfFpsJjub8k
Score

9^/10

discovery ransomware
- Renames multiple (3122) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware