fb1a311d80e857d979f6baa5ef700c77a6995f9ac588e95448cd26ee7c2dba14 | Triage

Sharing

General

Target

e07a9bdcad76aa47084360f521f24330N.exe
Size

43KB
Sample

240819-yj7h5swgpm
MD5

e07a9bdcad76aa47084360f521f24330
SHA1

f135148a4d58de82e005d47586679589138b50ad
SHA256

fb1a311d80e857d979f6baa5ef700c77a6995f9ac588e95448cd26ee7c2dba14
SHA512

6cb82d5b5d818d49eb520c57a9c9ba829b6719a1e7a6b94bb96e68dc5d86c1dd63c352290f266029b9801d0ea6b4f370b0b4027fa94059a36545eb4bd0045fdb
SSDEEP

384:GBt7Br5xjL9A7AgA71Fbhvnqj7jU7ubTAgpbuvx10AaIdKB7ubTAgpbuvx10AaIV:W7BlphA7pARFbhL801VvM801Vvv7cY3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e07a9bdcad76aa47084360f521f24330N.exe
- Size
  
  43KB
- MD5
  
  e07a9bdcad76aa47084360f521f24330
- SHA1
  
  f135148a4d58de82e005d47586679589138b50ad
- SHA256
  
  fb1a311d80e857d979f6baa5ef700c77a6995f9ac588e95448cd26ee7c2dba14
- SHA512
  
  6cb82d5b5d818d49eb520c57a9c9ba829b6719a1e7a6b94bb96e68dc5d86c1dd63c352290f266029b9801d0ea6b4f370b0b4027fa94059a36545eb4bd0045fdb
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71Fbhvnqj7jU7ubTAgpbuvx10AaIdKB7ubTAgpbuvx10AaIV:W7BlphA7pARFbhL801VvM801Vvv7cY3
Score

9^/10

discovery ransomware
- Renames multiple (3270) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware