3a38cf75c2c65170b42407d4b5e29d4856204ba1124f28b5badb1aafeef6ea70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6622f29ccdcdda7b8552bdb463bdeb20N.exe
Size

45KB
Sample

240820-njh6fayeqa
MD5

6622f29ccdcdda7b8552bdb463bdeb20
SHA1

af1601cfc0b07bb44c056eab23c798854c7d79ea
SHA256

3a38cf75c2c65170b42407d4b5e29d4856204ba1124f28b5badb1aafeef6ea70
SHA512

8fef33d06a76917abe8134ddee45bf27a66fe90aab48639197acaff95b37c5bcf237a40ed62bb98308e5197b0d3bc82ee31ad219ad2bb0d9c626dd81a683e7f5
SSDEEP

768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzE34i4e:W7Z2sspAp5YSfffCvX

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6622f29ccdcdda7b8552bdb463bdeb20N.exe
- Size
  
  45KB
- MD5
  
  6622f29ccdcdda7b8552bdb463bdeb20
- SHA1
  
  af1601cfc0b07bb44c056eab23c798854c7d79ea
- SHA256
  
  3a38cf75c2c65170b42407d4b5e29d4856204ba1124f28b5badb1aafeef6ea70
- SHA512
  
  8fef33d06a76917abe8134ddee45bf27a66fe90aab48639197acaff95b37c5bcf237a40ed62bb98308e5197b0d3bc82ee31ad219ad2bb0d9c626dd81a683e7f5
- SSDEEP
  
  768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzE34i4e:W7Z2sspAp5YSfffCvX
Score

9^/10

discovery ransomware
- Renames multiple (340) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware