a8538ea2a15bd4d1cfb79fca5276e0a626e0f60cb3aa7f74e80a873d952aee29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

885ab5572c54b317c511a233c685b1f0N.exe
Size

51KB
Sample

240819-d7rglsscmd
MD5

885ab5572c54b317c511a233c685b1f0
SHA1

aa1040d0b77732e2f4d29c8c25eed329809d3c8e
SHA256

a8538ea2a15bd4d1cfb79fca5276e0a626e0f60cb3aa7f74e80a873d952aee29
SHA512

9ad790702ba365e3a671feeb98a35b5a76b17011406a3fb4846c703dafd65bb12a69c873d7d9d0e951ccd1267d54f0dda4092e074484b1b14863cfe03fa59a1c
SSDEEP

768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsOU6:W7ZhA7pApw03vR03vcltdtSsOU6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  885ab5572c54b317c511a233c685b1f0N.exe
- Size
  
  51KB
- MD5
  
  885ab5572c54b317c511a233c685b1f0
- SHA1
  
  aa1040d0b77732e2f4d29c8c25eed329809d3c8e
- SHA256
  
  a8538ea2a15bd4d1cfb79fca5276e0a626e0f60cb3aa7f74e80a873d952aee29
- SHA512
  
  9ad790702ba365e3a671feeb98a35b5a76b17011406a3fb4846c703dafd65bb12a69c873d7d9d0e951ccd1267d54f0dda4092e074484b1b14863cfe03fa59a1c
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsOU6:W7ZhA7pApw03vR03vcltdtSsOU6
Score

9^/10

discovery ransomware
- Renames multiple (3275) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware