b402b27525c4d0d9384e00bba8d508d7a9a0701720f26f11d5b8d9b5f742c915 | Triage

Sharing

General

Target

ebc785702db2ae2896e0ca294bd30f80N.exe
Size

106KB
Sample

240820-bshj2swgqb
MD5

ebc785702db2ae2896e0ca294bd30f80
SHA1

3e7b53cde4941da034935fe984b8ceebce6bd16e
SHA256

b402b27525c4d0d9384e00bba8d508d7a9a0701720f26f11d5b8d9b5f742c915
SHA512

4af894cd515eadf763f7c89c7679f234e17d84ff8f34d09478bb8c32493d204af8da0d978f2e0a95ebbf420b6d5c492ac1ac192f9a8bb8dcdc1b807a9889d128
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fE:RqKvb0CYJ973e+eKZOf7fE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ebc785702db2ae2896e0ca294bd30f80N.exe
- Size
  
  106KB
- MD5
  
  ebc785702db2ae2896e0ca294bd30f80
- SHA1
  
  3e7b53cde4941da034935fe984b8ceebce6bd16e
- SHA256
  
  b402b27525c4d0d9384e00bba8d508d7a9a0701720f26f11d5b8d9b5f742c915
- SHA512
  
  4af894cd515eadf763f7c89c7679f234e17d84ff8f34d09478bb8c32493d204af8da0d978f2e0a95ebbf420b6d5c492ac1ac192f9a8bb8dcdc1b807a9889d128
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fE:RqKvb0CYJ973e+eKZOf7fE
Score

9^/10

discovery ransomware
- Renames multiple (2962) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware