048b4c98c915f6380adf17510c71b9a1891bc2c3ee66236274aab40bdfce9ca5 | Triage

Sharing

General

Target

85b068e6abff0df5b067373be8ec0cc0N.exe
Size

44KB
Sample

240818-b36pma1flr
MD5

85b068e6abff0df5b067373be8ec0cc0
SHA1

0b4a237173b52bc0961fe46e54e942666f67c64f
SHA256

048b4c98c915f6380adf17510c71b9a1891bc2c3ee66236274aab40bdfce9ca5
SHA512

7797e4f54c8bd642d44a8d20f8ca29e0cd2103210999658324233f406f57ac3d7efd51120087014da48d8cc390e3afe355ccef0b989fe663bd4e96076d489f4d
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJL6:W7ZppApBULcfpHLcfpyDF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  85b068e6abff0df5b067373be8ec0cc0N.exe
- Size
  
  44KB
- MD5
  
  85b068e6abff0df5b067373be8ec0cc0
- SHA1
  
  0b4a237173b52bc0961fe46e54e942666f67c64f
- SHA256
  
  048b4c98c915f6380adf17510c71b9a1891bc2c3ee66236274aab40bdfce9ca5
- SHA512
  
  7797e4f54c8bd642d44a8d20f8ca29e0cd2103210999658324233f406f57ac3d7efd51120087014da48d8cc390e3afe355ccef0b989fe663bd4e96076d489f4d
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJL6:W7ZppApBULcfpHLcfpyDF
Score

9^/10

discovery ransomware
- Renames multiple (3212) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware