bdf9a6e2a68ec61be32c0bd2a1455231b2aaac0f92f9d10daa31a1dc29b2d9b9 | Triage

Sharing

General

Target

2e2a297adc6511f3d0c166991254a7f0N.exe
Size

96KB
Sample

240820-c1gs6atbqr
MD5

2e2a297adc6511f3d0c166991254a7f0
SHA1

884aca836ddd81dbfb742328ce79232d7909c2fa
SHA256

bdf9a6e2a68ec61be32c0bd2a1455231b2aaac0f92f9d10daa31a1dc29b2d9b9
SHA512

113c095ef10b4a498f7fe6bbda75a9ab93663ffa670115cbc269889f26b2fcc9fe953d08c876118ae3e42200a07224ed7f95d8835404ad810a93fe1988144e1a
SSDEEP

1536:/7ZQpApg9u9rYmdC4cq5AMaBikyJ+s6LiU33:9QWpyu+JDIkyJXU33

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2e2a297adc6511f3d0c166991254a7f0N.exe
- Size
  
  96KB
- MD5
  
  2e2a297adc6511f3d0c166991254a7f0
- SHA1
  
  884aca836ddd81dbfb742328ce79232d7909c2fa
- SHA256
  
  bdf9a6e2a68ec61be32c0bd2a1455231b2aaac0f92f9d10daa31a1dc29b2d9b9
- SHA512
  
  113c095ef10b4a498f7fe6bbda75a9ab93663ffa670115cbc269889f26b2fcc9fe953d08c876118ae3e42200a07224ed7f95d8835404ad810a93fe1988144e1a
- SSDEEP
  
  1536:/7ZQpApg9u9rYmdC4cq5AMaBikyJ+s6LiU33:9QWpyu+JDIkyJXU33
Score

9^/10

discovery ransomware
- Renames multiple (2953) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware