ed82645e1b2844529bd5ec48ae901d50b9832e76ffe2bd523a7465c79a7da2f8 | Triage

Sharing

General

Target

80c3cb0da44b2d95cc863dff72e44ff0N.exe
Size

80KB
Sample

240820-qmnw7sxgkp
MD5

80c3cb0da44b2d95cc863dff72e44ff0
SHA1

549e8e96372818ba750923f55b0f65016f1f761d
SHA256

ed82645e1b2844529bd5ec48ae901d50b9832e76ffe2bd523a7465c79a7da2f8
SHA512

13b5fe3062cf2b21786d29365e5d09d135fc6dfef8e5ccd6141147d73983143c53b7a062a4d10095d87365025908e886edac0346e2e9997287a86053b19ccdf3
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYjhe:6e7WpMaxeb0CYJ97lEYNR73e+eGG3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  80c3cb0da44b2d95cc863dff72e44ff0N.exe
- Size
  
  80KB
- MD5
  
  80c3cb0da44b2d95cc863dff72e44ff0
- SHA1
  
  549e8e96372818ba750923f55b0f65016f1f761d
- SHA256
  
  ed82645e1b2844529bd5ec48ae901d50b9832e76ffe2bd523a7465c79a7da2f8
- SHA512
  
  13b5fe3062cf2b21786d29365e5d09d135fc6dfef8e5ccd6141147d73983143c53b7a062a4d10095d87365025908e886edac0346e2e9997287a86053b19ccdf3
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYjhe:6e7WpMaxeb0CYJ97lEYNR73e+eGG3
Score

9^/10

discovery ransomware
- Renames multiple (3089) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware