f17912afb5f2bd87f90b5fd6961ebba323236a330b0bf808cc6c1c6cc69ac6cf | Triage

Sharing

General

Target

67485d0eeb656e5f00e2adf145f63770N.exe
Size

45KB
Sample

240820-p3txqasemg
MD5

67485d0eeb656e5f00e2adf145f63770
SHA1

4420fa07e57a296bc61c33d6d5e30a3be4b9aef4
SHA256

f17912afb5f2bd87f90b5fd6961ebba323236a330b0bf808cc6c1c6cc69ac6cf
SHA512

be7fe0c1898fba4f438f617015bf86cfd0177a6c3be0ebb8106299414d06cc8c31f0276d8b7ec7580d8a7620128af5b15bfa0f4bafedb2d2a6ee62f4d48642e3
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66CM:/7BlpQpARFbhq1KtGFGxNCSNCM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  67485d0eeb656e5f00e2adf145f63770N.exe
- Size
  
  45KB
- MD5
  
  67485d0eeb656e5f00e2adf145f63770
- SHA1
  
  4420fa07e57a296bc61c33d6d5e30a3be4b9aef4
- SHA256
  
  f17912afb5f2bd87f90b5fd6961ebba323236a330b0bf808cc6c1c6cc69ac6cf
- SHA512
  
  be7fe0c1898fba4f438f617015bf86cfd0177a6c3be0ebb8106299414d06cc8c31f0276d8b7ec7580d8a7620128af5b15bfa0f4bafedb2d2a6ee62f4d48642e3
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66CM:/7BlpQpARFbhq1KtGFGxNCSNCM
Score

9^/10

discovery ransomware
- Renames multiple (3314) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware