d300aa8551db09a50e4da3422a0b84c2f89a167b9e23983d93104defd74466ea | Triage

Sharing

General

Target

f682ecd0603827383141f724391bb5b0N.exe
Size

44KB
Sample

240820-stzcmatbpl
MD5

f682ecd0603827383141f724391bb5b0
SHA1

da01d75ee00477478a4cd29781ec988e9a5b7070
SHA256

d300aa8551db09a50e4da3422a0b84c2f89a167b9e23983d93104defd74466ea
SHA512

13c00653dd96e07a67fbb98ab020fd6ccbde100c2fdc8cf934b5568196b09e4ff42104c2763fda16d9fea068c848a831f7af926aa50341f9b903b9612f0760d4
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLFdyGdynmpmrKnK8:W7ZppApBULcfpHLcfpyDUdyGdynmpmW5

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f682ecd0603827383141f724391bb5b0N.exe
- Size
  
  44KB
- MD5
  
  f682ecd0603827383141f724391bb5b0
- SHA1
  
  da01d75ee00477478a4cd29781ec988e9a5b7070
- SHA256
  
  d300aa8551db09a50e4da3422a0b84c2f89a167b9e23983d93104defd74466ea
- SHA512
  
  13c00653dd96e07a67fbb98ab020fd6ccbde100c2fdc8cf934b5568196b09e4ff42104c2763fda16d9fea068c848a831f7af926aa50341f9b903b9612f0760d4
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLFdyGdynmpmrKnK8:W7ZppApBULcfpHLcfpyDUdyGdynmpmW5
Score

9^/10

discovery ransomware
- Renames multiple (3312) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware