26870c6084ac096243f219778d506884a53a2952e48ad119222e45b9dafeaf21 | Triage

Sharing

General

Target

82a620f5b49347b05c42f36f3a62d580N.exe
Size

94KB
Sample

240817-xa54aatcmr
MD5

82a620f5b49347b05c42f36f3a62d580
SHA1

3199a2be46a01568d82a63e95e5c2afdea79ff1c
SHA256

26870c6084ac096243f219778d506884a53a2952e48ad119222e45b9dafeaf21
SHA512

93c0c2b4be6c0a689060c716eda5da8f9ea04820708923dddf554d7a9a024b8fd2315fd76fa631c4c4351cfcabb96f0a761976e99e31b11cefc31f27168a9ecc
SSDEEP

1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689ilYp/Dop/DG:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9f

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  82a620f5b49347b05c42f36f3a62d580N.exe
- Size
  
  94KB
- MD5
  
  82a620f5b49347b05c42f36f3a62d580
- SHA1
  
  3199a2be46a01568d82a63e95e5c2afdea79ff1c
- SHA256
  
  26870c6084ac096243f219778d506884a53a2952e48ad119222e45b9dafeaf21
- SHA512
  
  93c0c2b4be6c0a689060c716eda5da8f9ea04820708923dddf554d7a9a024b8fd2315fd76fa631c4c4351cfcabb96f0a761976e99e31b11cefc31f27168a9ecc
- SSDEEP
  
  1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689ilYp/Dop/DG:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9f
Score

9^/10

discovery ransomware
- Renames multiple (2876) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware