3211fa7046e8173e42649e182cdaa6641882933fb68237d3dd0a59e042bd2dee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f108a373cb4ac2538791f5d0eef1d190N.exe
Size

43KB
Sample

240820-p3pm1aselg
MD5

f108a373cb4ac2538791f5d0eef1d190
SHA1

c1b58b22fc6fbfaf3de068a406176caf567abd01
SHA256

3211fa7046e8173e42649e182cdaa6641882933fb68237d3dd0a59e042bd2dee
SHA512

2ba8c1422edb02938f1ff9577cbbbbe9b8fd760f475120b140c3887697d6a8a6e3d3854c1ae3fdf9ccdec3aca9458143f8d8456f43feb617f2ab023329a10d5e
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBNQFrs0AqAJwO1AqAJwOf0VyjVyl8:W7BlpppARFbhHFoqAJwBqAJw1VyjVyC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f108a373cb4ac2538791f5d0eef1d190N.exe
- Size
  
  43KB
- MD5
  
  f108a373cb4ac2538791f5d0eef1d190
- SHA1
  
  c1b58b22fc6fbfaf3de068a406176caf567abd01
- SHA256
  
  3211fa7046e8173e42649e182cdaa6641882933fb68237d3dd0a59e042bd2dee
- SHA512
  
  2ba8c1422edb02938f1ff9577cbbbbe9b8fd760f475120b140c3887697d6a8a6e3d3854c1ae3fdf9ccdec3aca9458143f8d8456f43feb617f2ab023329a10d5e
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBNQFrs0AqAJwO1AqAJwOf0VyjVyl8:W7BlpppARFbhHFoqAJwBqAJw1VyjVyC
Score

9^/10

discovery ransomware
- Renames multiple (3235) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware