093226d83038d9449c78ea4f91e5855dfbf68680322454785d1338a2c389369a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cf6f81076b9cbce735ce66ebff198e10N.exe
Size

40KB
Sample

240818-lgbmgaxcmh
MD5

cf6f81076b9cbce735ce66ebff198e10
SHA1

47e5cdf88c6053c5a20c7a707c85eebafab49399
SHA256

093226d83038d9449c78ea4f91e5855dfbf68680322454785d1338a2c389369a
SHA512

870f205f0cbfb7d372a876a62d311db8fc8d3545c4874be822b0b2590976c75973cee16e419d0f3a4e9f95e098f2a067d5913d88276b06ef489810c11913b9e6
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMw2V90TV90cc:W7Blp2sspARFbhVgNNHpQRNHpQRRVmVA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cf6f81076b9cbce735ce66ebff198e10N.exe
- Size
  
  40KB
- MD5
  
  cf6f81076b9cbce735ce66ebff198e10
- SHA1
  
  47e5cdf88c6053c5a20c7a707c85eebafab49399
- SHA256
  
  093226d83038d9449c78ea4f91e5855dfbf68680322454785d1338a2c389369a
- SHA512
  
  870f205f0cbfb7d372a876a62d311db8fc8d3545c4874be822b0b2590976c75973cee16e419d0f3a4e9f95e098f2a067d5913d88276b06ef489810c11913b9e6
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMw2V90TV90cc:W7Blp2sspARFbhVgNNHpQRNHpQRRVmVA
Score

9^/10

discovery ransomware
- Renames multiple (3261) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware