c4b004ad8c5fc2c0f9c965945a705ef39a268f01e9cdc69761985db27bd40abd | Triage

Sharing

General

Target

ef977be666beb52edc4421110c4e13c0N.exe
Size

191KB
Sample

240819-jnml7svhmp
MD5

ef977be666beb52edc4421110c4e13c0
SHA1

adbf668a1508ed1b5f27a55b49edcaf5d0b5d919
SHA256

c4b004ad8c5fc2c0f9c965945a705ef39a268f01e9cdc69761985db27bd40abd
SHA512

e1f1a3bcf3a1635601adfc5d31cef7c0431835ab53fcfd9939857fb600d0124d00480a2379c9d99ea9c9299716b6e95607c2917fff4e9d00ffaf36d4a97cad4e
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBgnW59XR:RqKB+tOkWKR0iJ0MnW5X

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ef977be666beb52edc4421110c4e13c0N.exe
- Size
  
  191KB
- MD5
  
  ef977be666beb52edc4421110c4e13c0
- SHA1
  
  adbf668a1508ed1b5f27a55b49edcaf5d0b5d919
- SHA256
  
  c4b004ad8c5fc2c0f9c965945a705ef39a268f01e9cdc69761985db27bd40abd
- SHA512
  
  e1f1a3bcf3a1635601adfc5d31cef7c0431835ab53fcfd9939857fb600d0124d00480a2379c9d99ea9c9299716b6e95607c2917fff4e9d00ffaf36d4a97cad4e
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBgnW59XR:RqKB+tOkWKR0iJ0MnW5X
Score

9^/10

discovery ransomware
- Renames multiple (2810) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware