df9d6982cb4e47b0f5ac2a3a044fd23f48f9bae84311733190396e57803ca410 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41843671864b4f33a5c57bfa58ac34c0N.exe
Size

47KB
Sample

240820-t2rs7awdrp
MD5

41843671864b4f33a5c57bfa58ac34c0
SHA1

2a57e7c3a8662c000772b1b36b525949787e2f28
SHA256

df9d6982cb4e47b0f5ac2a3a044fd23f48f9bae84311733190396e57803ca410
SHA512

2be4492ae9f2ff5cc8e6dafd03e0d7d751fdd1ac017cd41d0baee1c5d917f3d18e52d8d3aa47cfb6ffff3b6f0c2e659435396b21b74d083be3e624d4c7dbff86
SSDEEP

768:W7Blp+pARFbhBgnKLMWK9WKD2N2QpjlHlG:W7Z+pAp2nKLRKIKqoq1c

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41843671864b4f33a5c57bfa58ac34c0N.exe
- Size
  
  47KB
- MD5
  
  41843671864b4f33a5c57bfa58ac34c0
- SHA1
  
  2a57e7c3a8662c000772b1b36b525949787e2f28
- SHA256
  
  df9d6982cb4e47b0f5ac2a3a044fd23f48f9bae84311733190396e57803ca410
- SHA512
  
  2be4492ae9f2ff5cc8e6dafd03e0d7d751fdd1ac017cd41d0baee1c5d917f3d18e52d8d3aa47cfb6ffff3b6f0c2e659435396b21b74d083be3e624d4c7dbff86
- SSDEEP
  
  768:W7Blp+pARFbhBgnKLMWK9WKD2N2QpjlHlG:W7Z+pAp2nKLRKIKqoq1c
Score

9^/10

discovery ransomware
- Renames multiple (3062) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware