a60131ac478c0bba980d14e3f973cca55a0f795cddcc1624004441d89ff46e3f | Triage

Sharing

General

Target

def875e851fca9388d98409fa6167270N.exe
Size

85KB
Sample

240820-fcxfgsxfpk
MD5

def875e851fca9388d98409fa6167270
SHA1

02b0c05027cb9508fda43b46e6fa3cafb5b0eb19
SHA256

a60131ac478c0bba980d14e3f973cca55a0f795cddcc1624004441d89ff46e3f
SHA512

57fb1a5a7760db3d2c4b2797069d1e7970a12de64dba3c966bc982115019d76280ad51dc8f474bb9268c50c4c9ecc4e68b23f43bd15974d35e2cac082e3eba7f
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggz:69WpQE0zxgz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  def875e851fca9388d98409fa6167270N.exe
- Size
  
  85KB
- MD5
  
  def875e851fca9388d98409fa6167270
- SHA1
  
  02b0c05027cb9508fda43b46e6fa3cafb5b0eb19
- SHA256
  
  a60131ac478c0bba980d14e3f973cca55a0f795cddcc1624004441d89ff46e3f
- SHA512
  
  57fb1a5a7760db3d2c4b2797069d1e7970a12de64dba3c966bc982115019d76280ad51dc8f474bb9268c50c4c9ecc4e68b23f43bd15974d35e2cac082e3eba7f
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggz:69WpQE0zxgz
Score

9^/10

discovery ransomware
- Renames multiple (3139) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware