b570edf49095809b63f0d23280184ae290cfd05841792136d173f9cf55901547 | Triage

Sharing

General

Target

7bd0fe315177723393b23657a169ada0N.exe
Size

42KB
Sample

240820-2aenjszfrk
MD5

7bd0fe315177723393b23657a169ada0
SHA1

fb08dd234889378f8595484f99703eb9a889dc6d
SHA256

b570edf49095809b63f0d23280184ae290cfd05841792136d173f9cf55901547
SHA512

89c0b5167114055d3918a242e29c8912e23e9fa114dcff71ebc578667abdcbe12e8035ce0a69b1df2287de36d4710434aa429e1071b492c791f88e55a94afdef
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3hrjrnKvi1xDjrnKvi1xo:W7Blp9pARFbhnui1xDui1xo

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  7bd0fe315177723393b23657a169ada0N.exe
- Size
  
  42KB
- MD5
  
  7bd0fe315177723393b23657a169ada0
- SHA1
  
  fb08dd234889378f8595484f99703eb9a889dc6d
- SHA256
  
  b570edf49095809b63f0d23280184ae290cfd05841792136d173f9cf55901547
- SHA512
  
  89c0b5167114055d3918a242e29c8912e23e9fa114dcff71ebc578667abdcbe12e8035ce0a69b1df2287de36d4710434aa429e1071b492c791f88e55a94afdef
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3hrjrnKvi1xDjrnKvi1xo:W7Blp9pARFbhnui1xDui1xo
Score

9^/10

discovery ransomware
- Renames multiple (3434) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware