f5ee4f40f307c450f03b807412abc0ea13488db33ffde70d06b2363f91308bb6 | Triage

Sharing

General

Target

61e3ae29d5bdce616232cb8a63005d50N.exe
Size

89KB
Sample

240820-fqvh2svbrb
MD5

61e3ae29d5bdce616232cb8a63005d50
SHA1

91dbfa631f9e3957ab8bbb2809b8d5ed60464a9b
SHA256

f5ee4f40f307c450f03b807412abc0ea13488db33ffde70d06b2363f91308bb6
SHA512

af2142f00ad6b21884d500dd9c5aed893070ae8de2d9184c915d25e76298aee8f373920aa54a91ca2b00abc860cf2cef1a6aee1fcde3c3b1794d7b94a6e1cc3e
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhL:6pWpUFpEhLfyBtPf50FWkFpPDze/qFse

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  61e3ae29d5bdce616232cb8a63005d50N.exe
- Size
  
  89KB
- MD5
  
  61e3ae29d5bdce616232cb8a63005d50
- SHA1
  
  91dbfa631f9e3957ab8bbb2809b8d5ed60464a9b
- SHA256
  
  f5ee4f40f307c450f03b807412abc0ea13488db33ffde70d06b2363f91308bb6
- SHA512
  
  af2142f00ad6b21884d500dd9c5aed893070ae8de2d9184c915d25e76298aee8f373920aa54a91ca2b00abc860cf2cef1a6aee1fcde3c3b1794d7b94a6e1cc3e
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhL:6pWpUFpEhLfyBtPf50FWkFpPDze/qFse
Score

9^/10

discovery ransomware
- Renames multiple (3148) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware