0b005187e78bbde06493c3c9ff1e250e12d71b8e92e761780d2e16154af9b77d | Triage

Sharing

General

Target

1abd70bbc43499f91e4aa0c7c2204df0N.exe
Size

41KB
Sample

240819-heaevasfjr
MD5

1abd70bbc43499f91e4aa0c7c2204df0
SHA1

dceb3d1ab819c1dc81a895aaa4ecaa8d30528e6d
SHA256

0b005187e78bbde06493c3c9ff1e250e12d71b8e92e761780d2e16154af9b77d
SHA512

99ddf242afe7cc17b09e992ae5df2ce45a4572fe2e5adeeb139d3cb1a8b33d6aef34d493fb3f8571f6ce781fa4738caad8883822724404fd6bce5fd7ca5ccca4
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3e4S04Sw7V0cZ7V0c9:W7Blp9pARFbhs101kVFtVF9

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1abd70bbc43499f91e4aa0c7c2204df0N.exe
- Size
  
  41KB
- MD5
  
  1abd70bbc43499f91e4aa0c7c2204df0
- SHA1
  
  dceb3d1ab819c1dc81a895aaa4ecaa8d30528e6d
- SHA256
  
  0b005187e78bbde06493c3c9ff1e250e12d71b8e92e761780d2e16154af9b77d
- SHA512
  
  99ddf242afe7cc17b09e992ae5df2ce45a4572fe2e5adeeb139d3cb1a8b33d6aef34d493fb3f8571f6ce781fa4738caad8883822724404fd6bce5fd7ca5ccca4
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3e4S04Sw7V0cZ7V0c9:W7Blp9pARFbhs101kVFtVF9
Score

9^/10

discovery ransomware
- Renames multiple (3451) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware