7e301c71f0f6f11c9565599bbcfb7df1ea092280a3a5637eb4eae18f65a8ddc6 | Triage

Sharing

General

Target

065bee5daf9c192b0bf2a0d982fdb020N.exe
Size

76KB
Sample

240819-rcy5vsyamf
MD5

065bee5daf9c192b0bf2a0d982fdb020
SHA1

89a49a6f3a55bcf295eb2491224a98db8e509ddd
SHA256

7e301c71f0f6f11c9565599bbcfb7df1ea092280a3a5637eb4eae18f65a8ddc6
SHA512

b1f8c4e265d812c0e9d1f76ca84b7f7b7583e9ff107b70128f77fc4d481e687a7f0d164784502a9c1c91ef625f3f337c98fee87d4ff601b35c82cca3c5b305b1
SSDEEP

1536:W7ZNLpApCZrt8PWGoPWGANdN+hEwHwDvZvB:6NLWpCZIzjwHwT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  065bee5daf9c192b0bf2a0d982fdb020N.exe
- Size
  
  76KB
- MD5
  
  065bee5daf9c192b0bf2a0d982fdb020
- SHA1
  
  89a49a6f3a55bcf295eb2491224a98db8e509ddd
- SHA256
  
  7e301c71f0f6f11c9565599bbcfb7df1ea092280a3a5637eb4eae18f65a8ddc6
- SHA512
  
  b1f8c4e265d812c0e9d1f76ca84b7f7b7583e9ff107b70128f77fc4d481e687a7f0d164784502a9c1c91ef625f3f337c98fee87d4ff601b35c82cca3c5b305b1
- SSDEEP
  
  1536:W7ZNLpApCZrt8PWGoPWGANdN+hEwHwDvZvB:6NLWpCZIzjwHwT
Score

9^/10

discovery ransomware
- Renames multiple (3457) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware