71c6603267e03c3774ed2b5ef8231a9e40ea27867a1a6c64e7a8bb917c445307 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6931e6f5aa7b6abf8afc495662e882b0N.exe
Size

41KB
Sample

240819-vgk1kszakk
MD5

6931e6f5aa7b6abf8afc495662e882b0
SHA1

6fbb132d4d6858bdd3d1d3fa0085b5346ea0bdae
SHA256

71c6603267e03c3774ed2b5ef8231a9e40ea27867a1a6c64e7a8bb917c445307
SHA512

25bd10001efb2e2227ecfcf87b24af4112767df7cbb1f5279af7bd1ef6762720c17f0e3cba223e58ca5516ce66ec40d38e22447930139eb8b4424cd9a9576ce3
SSDEEP

384:yBs7Br5xjL8AgA71FbhvPvD4Qfxd4QfxYoDow:/7BlpQpARFbh3vzfxRfxYoDow

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6931e6f5aa7b6abf8afc495662e882b0N.exe
- Size
  
  41KB
- MD5
  
  6931e6f5aa7b6abf8afc495662e882b0
- SHA1
  
  6fbb132d4d6858bdd3d1d3fa0085b5346ea0bdae
- SHA256
  
  71c6603267e03c3774ed2b5ef8231a9e40ea27867a1a6c64e7a8bb917c445307
- SHA512
  
  25bd10001efb2e2227ecfcf87b24af4112767df7cbb1f5279af7bd1ef6762720c17f0e3cba223e58ca5516ce66ec40d38e22447930139eb8b4424cd9a9576ce3
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvPvD4Qfxd4QfxYoDow:/7BlpQpARFbh3vzfxRfxYoDow
Score

9^/10

discovery ransomware
- Renames multiple (3256) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware