8336166f39a76ddf04182b003b78955047b80d5e17d105379fa4022c8db1b42e | Triage

Sharing

General

Target

9afd6808c05514f158a9ca78d653a150N.exe
Size

50KB
Sample

240819-r9esgszhkg
MD5

9afd6808c05514f158a9ca78d653a150
SHA1

7ce5b5b91b49d22008a38ba576c19ba52e538807
SHA256

8336166f39a76ddf04182b003b78955047b80d5e17d105379fa4022c8db1b42e
SHA512

2e5eed177ee2ca8582d35c65f297b1864eca044bf5399ada8bc093aed31611f5884f30865698e6fc160a8e8c8f790cda164dd11500c1644be7de8107798f71b2
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJ/1PQurQmi1x7urQmi1xY:W7ZppApyVyjVyUosPosk

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9afd6808c05514f158a9ca78d653a150N.exe
- Size
  
  50KB
- MD5
  
  9afd6808c05514f158a9ca78d653a150
- SHA1
  
  7ce5b5b91b49d22008a38ba576c19ba52e538807
- SHA256
  
  8336166f39a76ddf04182b003b78955047b80d5e17d105379fa4022c8db1b42e
- SHA512
  
  2e5eed177ee2ca8582d35c65f297b1864eca044bf5399ada8bc093aed31611f5884f30865698e6fc160a8e8c8f790cda164dd11500c1644be7de8107798f71b2
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJ/1PQurQmi1x7urQmi1xY:W7ZppApyVyjVyUosPosk
Score

9^/10

discovery ransomware
- Renames multiple (3140) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware