f257371b68f72a63bf6579296cdd7a7d35d2735d6e98eb20397edfcfd5a095ba | Triage

Sharing

General

Target

41cf62fbce575be1834fc73ba4f70470N.exe
Size

47KB
Sample

240820-3slegstbnm
MD5

41cf62fbce575be1834fc73ba4f70470
SHA1

7df9fda8b92e41c77c423c12a4faeafa7ce9f83b
SHA256

f257371b68f72a63bf6579296cdd7a7d35d2735d6e98eb20397edfcfd5a095ba
SHA512

ad3fa9ab58836ebeb10cd97b38a540d1dd5e25fe0fc95634afc5ba12db635e21adca2d0c0f415217d55ba73e486cc1e7b10cadebff75e80abd49e1a53a1e7d9a
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLS/3MMf/3MMy0U0czyKbNzzyKbN4OV0o:W7Blp2sspARFbh5YSfffynfWK9WKNV0o

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41cf62fbce575be1834fc73ba4f70470N.exe
- Size
  
  47KB
- MD5
  
  41cf62fbce575be1834fc73ba4f70470
- SHA1
  
  7df9fda8b92e41c77c423c12a4faeafa7ce9f83b
- SHA256
  
  f257371b68f72a63bf6579296cdd7a7d35d2735d6e98eb20397edfcfd5a095ba
- SHA512
  
  ad3fa9ab58836ebeb10cd97b38a540d1dd5e25fe0fc95634afc5ba12db635e21adca2d0c0f415217d55ba73e486cc1e7b10cadebff75e80abd49e1a53a1e7d9a
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLS/3MMf/3MMy0U0czyKbNzzyKbN4OV0o:W7Blp2sspARFbh5YSfffynfWK9WKNV0o
Score

9^/10

discovery ransomware
- Renames multiple (3418) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware