815f4d21569eb1de7022e13d7abc8198ba3ce28bb81a76e5e5abe279bc2f7021 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2670a024f3827cdd637ba0ae224b4ac0N.exe
Size

70KB
Sample

240818-l25faa1eqn
MD5

2670a024f3827cdd637ba0ae224b4ac0
SHA1

91ea40dae017eea10a207fb919bf99c0999a7538
SHA256

815f4d21569eb1de7022e13d7abc8198ba3ce28bb81a76e5e5abe279bc2f7021
SHA512

cd75295a190375b74acd37c961ffd3170acb9c3bcebc82227587111c5e4e73a59538ccd1ae6a831567ef1aeb53b8e2e1b0ac2e2ae2d7366c71e6c6805ae7e4a8
SSDEEP

1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSTfz:6DWp7WLfz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2670a024f3827cdd637ba0ae224b4ac0N.exe
- Size
  
  70KB
- MD5
  
  2670a024f3827cdd637ba0ae224b4ac0
- SHA1
  
  91ea40dae017eea10a207fb919bf99c0999a7538
- SHA256
  
  815f4d21569eb1de7022e13d7abc8198ba3ce28bb81a76e5e5abe279bc2f7021
- SHA512
  
  cd75295a190375b74acd37c961ffd3170acb9c3bcebc82227587111c5e4e73a59538ccd1ae6a831567ef1aeb53b8e2e1b0ac2e2ae2d7366c71e6c6805ae7e4a8
- SSDEEP
  
  1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSTfz:6DWp7WLfz
Score

9^/10

discovery ransomware
- Renames multiple (3139) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware