d8a7e29776392d68d3ca77b067fae5a2e7ae7101366e5f942406c73539f13c24 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbb46a54be7566c8cde37c2a38091160N.exe
Size

52KB
Sample

240818-m9kara1cjh
MD5

cbb46a54be7566c8cde37c2a38091160
SHA1

6681325e368dd0c7540b1f7bfb5026e1e08d6e0f
SHA256

d8a7e29776392d68d3ca77b067fae5a2e7ae7101366e5f942406c73539f13c24
SHA512

6c38215c281aa5979bf6dda5e32f657d20a311f24d5348f0a19655a2448b361a8a4b84ffa9f5a2c40e37b76f6975c53d9bae04169e3b9db33d7469af0a056386
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7+j9nHVFtVFx:W7ZhA7pApw03vR03vwnP5x

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cbb46a54be7566c8cde37c2a38091160N.exe
- Size
  
  52KB
- MD5
  
  cbb46a54be7566c8cde37c2a38091160
- SHA1
  
  6681325e368dd0c7540b1f7bfb5026e1e08d6e0f
- SHA256
  
  d8a7e29776392d68d3ca77b067fae5a2e7ae7101366e5f942406c73539f13c24
- SHA512
  
  6c38215c281aa5979bf6dda5e32f657d20a311f24d5348f0a19655a2448b361a8a4b84ffa9f5a2c40e37b76f6975c53d9bae04169e3b9db33d7469af0a056386
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7+j9nHVFtVFx:W7ZhA7pApw03vR03vwnP5x
Score

9^/10

discovery ransomware
- Renames multiple (3191) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware