f406e6f37a33df3e8c130129a193638dc71f6a4fc454875754c3cc2131b94b82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a5d9870cc24c702794cda50f61a98d0N.exe
Size

84KB
Sample

240820-gvkp3sxalf
MD5

3a5d9870cc24c702794cda50f61a98d0
SHA1

7ee0e5dcf498975ad1b432d27c0c9049e573114d
SHA256

f406e6f37a33df3e8c130129a193638dc71f6a4fc454875754c3cc2131b94b82
SHA512

246480954e5009061a072d41d9ca0582cd80b26fb6d9253c5e4fb0c29c6fa0c191c0378477c3014681ff990a05fb4bac23ca19a1c082c25aa74036c270b6050b
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYAWwhYWwhy:6e7WpMaxeb0CYJ97lEYNR73e+eGG3Ww1

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3a5d9870cc24c702794cda50f61a98d0N.exe
- Size
  
  84KB
- MD5
  
  3a5d9870cc24c702794cda50f61a98d0
- SHA1
  
  7ee0e5dcf498975ad1b432d27c0c9049e573114d
- SHA256
  
  f406e6f37a33df3e8c130129a193638dc71f6a4fc454875754c3cc2131b94b82
- SHA512
  
  246480954e5009061a072d41d9ca0582cd80b26fb6d9253c5e4fb0c29c6fa0c191c0378477c3014681ff990a05fb4bac23ca19a1c082c25aa74036c270b6050b
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYAWwhYWwhy:6e7WpMaxeb0CYJ97lEYNR73e+eGG3Ww1
Score

9^/10

discovery ransomware
- Renames multiple (3145) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware