8d478a9a325d2a620e621e2aa1fcb981b7ee923a8aaa1e86f84335e22d75d3e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9ed950631e9480e488459b2f5a515e0N.exe
Size

46KB
Sample

240820-p2tkkawfnn
MD5

f9ed950631e9480e488459b2f5a515e0
SHA1

3925fb3a2bb4211b32d04ff9432911c898356980
SHA256

8d478a9a325d2a620e621e2aa1fcb981b7ee923a8aaa1e86f84335e22d75d3e4
SHA512

de03980a5eb06038115347ed5fa827384fad8f0aba3398662bd84a6caf9e8769335b118a1240a2b895dda3b159f17634c28633987e12e1d24e2a69fef88cc2a7
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJwNqikTqikkvPVvP6:W7ZppApyqikTqikn

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f9ed950631e9480e488459b2f5a515e0N.exe
- Size
  
  46KB
- MD5
  
  f9ed950631e9480e488459b2f5a515e0
- SHA1
  
  3925fb3a2bb4211b32d04ff9432911c898356980
- SHA256
  
  8d478a9a325d2a620e621e2aa1fcb981b7ee923a8aaa1e86f84335e22d75d3e4
- SHA512
  
  de03980a5eb06038115347ed5fa827384fad8f0aba3398662bd84a6caf9e8769335b118a1240a2b895dda3b159f17634c28633987e12e1d24e2a69fef88cc2a7
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJwNqikTqikkvPVvP6:W7ZppApyqikTqikn
Score

9^/10

discovery ransomware
- Renames multiple (3349) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware