6cb4757c063db4636535a82f7cc41d7871e4019f949d2139377127e651801f53 | Triage

Sharing

General

Target

7e7d8258c892f4e0fd5578b033567e20N.exe
Size

204KB
Sample

240819-2xr76avakm
MD5

7e7d8258c892f4e0fd5578b033567e20
SHA1

e399e1e7926aea6032d3f3e0bfa2d0e11adc2450
SHA256

6cb4757c063db4636535a82f7cc41d7871e4019f949d2139377127e651801f53
SHA512

7911098f298cc352bd2aa4776337ce270849c3904647bd062c1f4eb8d5d00b25ac7f4d86432222e868c67f25c1602d7d1d027ace56b655cfe02fbb942e6a98be
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzky:RqKB+tOkWKR0iJ0lTzky

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  7e7d8258c892f4e0fd5578b033567e20N.exe
- Size
  
  204KB
- MD5
  
  7e7d8258c892f4e0fd5578b033567e20
- SHA1
  
  e399e1e7926aea6032d3f3e0bfa2d0e11adc2450
- SHA256
  
  6cb4757c063db4636535a82f7cc41d7871e4019f949d2139377127e651801f53
- SHA512
  
  7911098f298cc352bd2aa4776337ce270849c3904647bd062c1f4eb8d5d00b25ac7f4d86432222e868c67f25c1602d7d1d027ace56b655cfe02fbb942e6a98be
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzky:RqKB+tOkWKR0iJ0lTzky
Score

9^/10

discovery ransomware
- Renames multiple (2681) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware