bcb451c9e811729e507299c2a53e7e6d45d239db8c90fa6f5b726dd77ed2e917 | Triage

Sharing

General

Target

529799d889485bfd62f0ca77e9c036a0N.exe
Size

94KB
Sample

240819-3nvscswdkq
MD5

529799d889485bfd62f0ca77e9c036a0
SHA1

0eeb93298f321d2acfdbd5775c46eb08dc8cc314
SHA256

bcb451c9e811729e507299c2a53e7e6d45d239db8c90fa6f5b726dd77ed2e917
SHA512

cff40078aae58565363c435286598d81ea07a3d97dd9edb37a9812a29cf344afd598c48093fa87746709f69018bb01201026d3400791fe294b2f252476767a77
SSDEEP

1536:W7ZDpApYbWjIoPyPoLzV7c6ShZQ4PN54PNwYHB10YHB1a:6DWp4W6YHB10YHB1a

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  529799d889485bfd62f0ca77e9c036a0N.exe
- Size
  
  94KB
- MD5
  
  529799d889485bfd62f0ca77e9c036a0
- SHA1
  
  0eeb93298f321d2acfdbd5775c46eb08dc8cc314
- SHA256
  
  bcb451c9e811729e507299c2a53e7e6d45d239db8c90fa6f5b726dd77ed2e917
- SHA512
  
  cff40078aae58565363c435286598d81ea07a3d97dd9edb37a9812a29cf344afd598c48093fa87746709f69018bb01201026d3400791fe294b2f252476767a77
- SSDEEP
  
  1536:W7ZDpApYbWjIoPyPoLzV7c6ShZQ4PN54PNwYHB10YHB1a:6DWp4W6YHB10YHB1a
Score

9^/10

discovery ransomware
- Renames multiple (2639) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware