83615e977e91aef9fc3215cebeacee70113ab66137c393ff0db8bf65f41153a3 | Triage

Sharing

General

Target

575cb057bcc572d1454dc269b0ff9480N.exe
Size

54KB
Sample

240818-k4lwaazajr
MD5

575cb057bcc572d1454dc269b0ff9480
SHA1

133116dab759f843c7229f91ab3ac370b9be7d3c
SHA256

83615e977e91aef9fc3215cebeacee70113ab66137c393ff0db8bf65f41153a3
SHA512

3c611f059e7a5c28978c5b6b13f5af1e98b5a1ecfcfb751188b25a2a534a2f9343515a3806b3d9a54b246b94b9f6ca46d98b9e4eb4d0af530a69900a8ef6b89d
SSDEEP

768:W7BlpppARFbhknrAqQ/Q6JYAJYMMF/2AxXxXIYcUYcQbab3:W7ZppApktshJYAJYDVXxXIYcUYcH

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  575cb057bcc572d1454dc269b0ff9480N.exe
- Size
  
  54KB
- MD5
  
  575cb057bcc572d1454dc269b0ff9480
- SHA1
  
  133116dab759f843c7229f91ab3ac370b9be7d3c
- SHA256
  
  83615e977e91aef9fc3215cebeacee70113ab66137c393ff0db8bf65f41153a3
- SHA512
  
  3c611f059e7a5c28978c5b6b13f5af1e98b5a1ecfcfb751188b25a2a534a2f9343515a3806b3d9a54b246b94b9f6ca46d98b9e4eb4d0af530a69900a8ef6b89d
- SSDEEP
  
  768:W7BlpppARFbhknrAqQ/Q6JYAJYMMF/2AxXxXIYcUYcQbab3:W7ZppApktshJYAJYDVXxXIYcUYcH
Score

9^/10

discovery ransomware
- Renames multiple (3429) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware