a3d6e41d15a96e85fb1997ff487d1e9aa6293deb347fcc52171d20783cf58fff | Triage

Sharing

General

Target

0b9d09d2a356672f59835781c48c68f0N.exe
Size

71KB
Sample

240819-rz9vwazcrb
MD5

0b9d09d2a356672f59835781c48c68f0
SHA1

e726a33878d63446912e7d9b20583f20099fa986
SHA256

a3d6e41d15a96e85fb1997ff487d1e9aa6293deb347fcc52171d20783cf58fff
SHA512

c954df7895438c62ef1af84317a3875f5d0c7c5bf9066731c5c8c2d86610b687abd2d31055b4fbf3e94dbdb4dd5cebcd8a2c50960dceadaf5fe3fffc9771ca36
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPFauae:6pWpUnDXxXG

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0b9d09d2a356672f59835781c48c68f0N.exe
- Size
  
  71KB
- MD5
  
  0b9d09d2a356672f59835781c48c68f0
- SHA1
  
  e726a33878d63446912e7d9b20583f20099fa986
- SHA256
  
  a3d6e41d15a96e85fb1997ff487d1e9aa6293deb347fcc52171d20783cf58fff
- SHA512
  
  c954df7895438c62ef1af84317a3875f5d0c7c5bf9066731c5c8c2d86610b687abd2d31055b4fbf3e94dbdb4dd5cebcd8a2c50960dceadaf5fe3fffc9771ca36
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPFauae:6pWpUnDXxXG
Score

9^/10

discovery ransomware
- Renames multiple (3690) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware