3c8a47d07c42227c38abfcf71925bfa35e290b0c104a21772742774b102eaebf | Triage

Sharing

General

Target

e28359b6db4e9d392b5d87fa7785a210N.exe
Size

43KB
Sample

240819-x21ymsvgmm
MD5

e28359b6db4e9d392b5d87fa7785a210
SHA1

2ef70d108b7853679b799fb859b5fda9a33841fa
SHA256

3c8a47d07c42227c38abfcf71925bfa35e290b0c104a21772742774b102eaebf
SHA512

7ae8ba998eed916b96356fe3b4c0b0a1faba3b772f2fe4d2e0e3762bb763e521d1800848e10edeff4b1d89920907696e53cd3e9898b557b601b85ff339fc26f8
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzHqK66CPK66CR262X:/7BlpQpARFbhNI3NCSNCRhs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e28359b6db4e9d392b5d87fa7785a210N.exe
- Size
  
  43KB
- MD5
  
  e28359b6db4e9d392b5d87fa7785a210
- SHA1
  
  2ef70d108b7853679b799fb859b5fda9a33841fa
- SHA256
  
  3c8a47d07c42227c38abfcf71925bfa35e290b0c104a21772742774b102eaebf
- SHA512
  
  7ae8ba998eed916b96356fe3b4c0b0a1faba3b772f2fe4d2e0e3762bb763e521d1800848e10edeff4b1d89920907696e53cd3e9898b557b601b85ff339fc26f8
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzHqK66CPK66CR262X:/7BlpQpARFbhNI3NCSNCRhs
Score

9^/10

discovery ransomware
- Renames multiple (3261) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware