d40449c9aafd9705992129a7489daef314f8f22e88b3536c699d8130832bd8be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9998712877b7d12ac466d25854ae4300N.exe
Size

59KB
Sample

240820-j5z9mavhnj
MD5

9998712877b7d12ac466d25854ae4300
SHA1

da7cdcf00b32fff0c0a7e154bd3050ac10b6da30
SHA256

d40449c9aafd9705992129a7489daef314f8f22e88b3536c699d8130832bd8be
SHA512

b7c393f38fc6020e5d5780c667cecedcab1d1dc279f057e42a5d289c92ed9b0f12f6b4a1c5b2894e90267d797098fe58576469b7d30e9ae72a8d1ebc5aa957fd
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EZNaLmu:W7ZppApBULcfpHLcfpX2/Nw/NwmxLTK

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9998712877b7d12ac466d25854ae4300N.exe
- Size
  
  59KB
- MD5
  
  9998712877b7d12ac466d25854ae4300
- SHA1
  
  da7cdcf00b32fff0c0a7e154bd3050ac10b6da30
- SHA256
  
  d40449c9aafd9705992129a7489daef314f8f22e88b3536c699d8130832bd8be
- SHA512
  
  b7c393f38fc6020e5d5780c667cecedcab1d1dc279f057e42a5d289c92ed9b0f12f6b4a1c5b2894e90267d797098fe58576469b7d30e9ae72a8d1ebc5aa957fd
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EZNaLmu:W7ZppApBULcfpHLcfpX2/Nw/NwmxLTK
Score

9^/10

discovery ransomware
- Renames multiple (3185) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware