b6a93493ade3654744d99f1cd92ca743c54440c958c42c6940c4b06b8ae860f0 | Triage

Sharing

General

Target

50385c210e91d7a72f0366d348031550N.exe
Size

38KB
Sample

240818-g4tpcazfld
MD5

50385c210e91d7a72f0366d348031550
SHA1

5764ce90167c731e9946874c512c99becf19a5c0
SHA256

b6a93493ade3654744d99f1cd92ca743c54440c958c42c6940c4b06b8ae860f0
SHA512

980ee7a52b5687b981c51ba82ce781891bacd83b41d26a791d48ad1cc3bdeecd095afe9bd3a7a252372e2c9e3128c37d6d5c4e2c9794e5b53e705091b8c512a0
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3O/nAqAJOxAdAJO9AqAJOxAdAJOR:W7Blp9pARFbh4/AqAJjdAJbqAJjdAJE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  50385c210e91d7a72f0366d348031550N.exe
- Size
  
  38KB
- MD5
  
  50385c210e91d7a72f0366d348031550
- SHA1
  
  5764ce90167c731e9946874c512c99becf19a5c0
- SHA256
  
  b6a93493ade3654744d99f1cd92ca743c54440c958c42c6940c4b06b8ae860f0
- SHA512
  
  980ee7a52b5687b981c51ba82ce781891bacd83b41d26a791d48ad1cc3bdeecd095afe9bd3a7a252372e2c9e3128c37d6d5c4e2c9794e5b53e705091b8c512a0
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3O/nAqAJOxAdAJO9AqAJOxAdAJOR:W7Blp9pARFbh4/AqAJjdAJbqAJjdAJE
Score

9^/10

discovery ransomware
- Renames multiple (3327) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware