7d8a234f8e1d2dd6fe3ef63e66c40bd2dd4ba2d5e6f4a396e3f87b9e68413dd8 | Triage

Sharing

General

Target

737b7c06f4b3863ce91098b891584a70N.exe
Size

63KB
Sample

240819-lep23swdpa
MD5

737b7c06f4b3863ce91098b891584a70
SHA1

dbdd00db8b406d5ed0909d48167182c0b2937212
SHA256

7d8a234f8e1d2dd6fe3ef63e66c40bd2dd4ba2d5e6f4a396e3f87b9e68413dd8
SHA512

57ea4580ab26a253e05dc02b7f0737ba8bcfb9102d90c8eaf2d08bf0ab0ca70776457e37e0cfc0aadefd7d6954c6e266a4f6b4980f9307c7f23038e6f1d4579c
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EZNaLmq:W7ZppApBULcfpHLcfpX2/Nw/NwmxLTW

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  737b7c06f4b3863ce91098b891584a70N.exe
- Size
  
  63KB
- MD5
  
  737b7c06f4b3863ce91098b891584a70
- SHA1
  
  dbdd00db8b406d5ed0909d48167182c0b2937212
- SHA256
  
  7d8a234f8e1d2dd6fe3ef63e66c40bd2dd4ba2d5e6f4a396e3f87b9e68413dd8
- SHA512
  
  57ea4580ab26a253e05dc02b7f0737ba8bcfb9102d90c8eaf2d08bf0ab0ca70776457e37e0cfc0aadefd7d6954c6e266a4f6b4980f9307c7f23038e6f1d4579c
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EZNaLmq:W7ZppApBULcfpHLcfpX2/Nw/NwmxLTW
Score

9^/10

discovery ransomware
- Renames multiple (3167) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware