2d85ed869e902bdb74d934f6bf73a56e4366ebc68120d638a5dda509d1c315d2 | Triage

Sharing

General

Target

2f72816a2b9fe8eedd1e22f5ebf2ec30N.exe
Size

91KB
Sample

240819-yerxwswenn
MD5

2f72816a2b9fe8eedd1e22f5ebf2ec30
SHA1

fbf17ce48e3c1cc84e2636a6e331ee332bef73d0
SHA256

2d85ed869e902bdb74d934f6bf73a56e4366ebc68120d638a5dda509d1c315d2
SHA512

50f2e8e244d0a7240cb7b62e1b62fb74a5aa8e30a31f82bc64ecf13cee10d41841a4317c9985f632f7208aa9f5738420493f36e045c971031353d001151438c3
SSDEEP

1536:W7Z2sspApGg7bobSM+t58qKcAK+j4nI4VfNgZ11PED4gJQeAAUZa0EzOMI:62ssWpGgrM+t58qKcAK+j4n7ByeFU7

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2f72816a2b9fe8eedd1e22f5ebf2ec30N.exe
- Size
  
  91KB
- MD5
  
  2f72816a2b9fe8eedd1e22f5ebf2ec30
- SHA1
  
  fbf17ce48e3c1cc84e2636a6e331ee332bef73d0
- SHA256
  
  2d85ed869e902bdb74d934f6bf73a56e4366ebc68120d638a5dda509d1c315d2
- SHA512
  
  50f2e8e244d0a7240cb7b62e1b62fb74a5aa8e30a31f82bc64ecf13cee10d41841a4317c9985f632f7208aa9f5738420493f36e045c971031353d001151438c3
- SSDEEP
  
  1536:W7Z2sspApGg7bobSM+t58qKcAK+j4nI4VfNgZ11PED4gJQeAAUZa0EzOMI:62ssWpGgrM+t58qKcAK+j4n7ByeFU7
Score

9^/10

discovery ransomware
- Renames multiple (3122) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware