46be47ee1b0efda34b5b6ce2a6adf7e96cd0087b9fd8cfc881fa568610b786a8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98696d33d89ae5f6cdad03581920e3f0N.exe
Size

84KB
Sample

240817-ty9jtsxhrm
MD5

98696d33d89ae5f6cdad03581920e3f0
SHA1

9c8ae8a21b96087b8201141f5b23d9cb52b7d0e6
SHA256

46be47ee1b0efda34b5b6ce2a6adf7e96cd0087b9fd8cfc881fa568610b786a8
SHA512

b3a24cf90dab8a8306e0d5567da6818ac6495b57eb538bae0272b12f691ddba4c9636d29a6cbd5f3c9786da714e4dd5bcfbad1b784ae3abfb68173cbfcd35cad
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggZ:69WpQE0zxgZ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  98696d33d89ae5f6cdad03581920e3f0N.exe
- Size
  
  84KB
- MD5
  
  98696d33d89ae5f6cdad03581920e3f0
- SHA1
  
  9c8ae8a21b96087b8201141f5b23d9cb52b7d0e6
- SHA256
  
  46be47ee1b0efda34b5b6ce2a6adf7e96cd0087b9fd8cfc881fa568610b786a8
- SHA512
  
  b3a24cf90dab8a8306e0d5567da6818ac6495b57eb538bae0272b12f691ddba4c9636d29a6cbd5f3c9786da714e4dd5bcfbad1b784ae3abfb68173cbfcd35cad
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggZ:69WpQE0zxgZ
Score

9^/10

discovery ransomware
- Renames multiple (339) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware