eb4ce4f9ab2ddfad44d028383c9467714f556daad81151535860b4929a34881b | Triage

Sharing

General

Target

f52e4f3dcf6a2e4b637fe4d8e0657880N.exe
Size

33KB
Sample

240820-evwfgawhnk
MD5

f52e4f3dcf6a2e4b637fe4d8e0657880
SHA1

092d5cef9dc7c1e0a6666a1f23114cb589cd6c3b
SHA256

eb4ce4f9ab2ddfad44d028383c9467714f556daad81151535860b4929a34881b
SHA512

c0c1424e5bdf545b5e2849d9d925e1f0315ee56815d4590a14fa4330759cc5bb335abb0edb73485635f245267db7a442e14b5c9dd7202e2fadbed88b9a76ec65
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5l3:W7ZhA7pApM21LOA1LOl6a

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f52e4f3dcf6a2e4b637fe4d8e0657880N.exe
- Size
  
  33KB
- MD5
  
  f52e4f3dcf6a2e4b637fe4d8e0657880
- SHA1
  
  092d5cef9dc7c1e0a6666a1f23114cb589cd6c3b
- SHA256
  
  eb4ce4f9ab2ddfad44d028383c9467714f556daad81151535860b4929a34881b
- SHA512
  
  c0c1424e5bdf545b5e2849d9d925e1f0315ee56815d4590a14fa4330759cc5bb335abb0edb73485635f245267db7a442e14b5c9dd7202e2fadbed88b9a76ec65
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5l3:W7ZhA7pApM21LOA1LOl6a
Score

9^/10

discovery ransomware
- Renames multiple (3332) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware