462c8d3b6b7814fe7e50882ba268e4f05ca1ad3a58856ef9a8a7c91c9ed6f8f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

585670647d0c62ce1ad208c75a046550N.exe
Size

257KB
Sample

240819-atdf2stelc
MD5

585670647d0c62ce1ad208c75a046550
SHA1

1c5fb24e4b0922e381330a33a469cb047bca97d5
SHA256

462c8d3b6b7814fe7e50882ba268e4f05ca1ad3a58856ef9a8a7c91c9ed6f8f5
SHA512

3655f91b50f2a980f3d5cf0d59ba9f5e02943e8acd4c9231aba66f397abb266e98fe1a653c69ac9d95b364445c6de3412428fd7e45e92c02386b2bbf41c18dc6
SSDEEP

6144:AonmhNYRP4V7bh3tspT4uK3Lp/lDHxY+v:XnmhNYP4Jbh3tspELFhHjv

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  585670647d0c62ce1ad208c75a046550N.exe
- Size
  
  257KB
- MD5
  
  585670647d0c62ce1ad208c75a046550
- SHA1
  
  1c5fb24e4b0922e381330a33a469cb047bca97d5
- SHA256
  
  462c8d3b6b7814fe7e50882ba268e4f05ca1ad3a58856ef9a8a7c91c9ed6f8f5
- SHA512
  
  3655f91b50f2a980f3d5cf0d59ba9f5e02943e8acd4c9231aba66f397abb266e98fe1a653c69ac9d95b364445c6de3412428fd7e45e92c02386b2bbf41c18dc6
- SSDEEP
  
  6144:AonmhNYRP4V7bh3tspT4uK3Lp/lDHxY+v:XnmhNYP4Jbh3tspELFhHjv
Score

9^/10

discovery ransomware
- Renames multiple (2308) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware