e0603f85d8a2b689abd0e55447cf67c65bbfff22abbdfa9b21f2f0fb9745028c | Triage

Sharing

General

Target

37483a26ecf4b8bce974aee9fc39bd80N.exe
Size

36KB
Sample

240818-mtrd5azemc
MD5

37483a26ecf4b8bce974aee9fc39bd80
SHA1

974172d0776c6bda1ebce58fddebbb24e251aae8
SHA256

e0603f85d8a2b689abd0e55447cf67c65bbfff22abbdfa9b21f2f0fb9745028c
SHA512

72654ec8784e1e46349e8800468b7b72b734717d1b9d16eddd6e58b769f47972baf3f9724993d7127dc738ec70a3d95ab261ac4350b3b3d9d0fff2df75e48bc9
SSDEEP

192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXUXHz9g5JHz9g5WD3D6:GBt7Br5xjL7lAgA71Fbhvt3bu5c5cT6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  37483a26ecf4b8bce974aee9fc39bd80N.exe
- Size
  
  36KB
- MD5
  
  37483a26ecf4b8bce974aee9fc39bd80
- SHA1
  
  974172d0776c6bda1ebce58fddebbb24e251aae8
- SHA256
  
  e0603f85d8a2b689abd0e55447cf67c65bbfff22abbdfa9b21f2f0fb9745028c
- SHA512
  
  72654ec8784e1e46349e8800468b7b72b734717d1b9d16eddd6e58b769f47972baf3f9724993d7127dc738ec70a3d95ab261ac4350b3b3d9d0fff2df75e48bc9
- SSDEEP
  
  192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXUXHz9g5JHz9g5WD3D6:GBt7Br5xjL7lAgA71Fbhvt3bu5c5cT6
Score

9^/10

discovery ransomware
- Renames multiple (3374) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware