27c3c95fc5d5055acfaddbed8d2b9fbc4021d9d65a6652db597e8721b41a52dd | Triage

Sharing

General

Target

5503b83f32202c8a976c12b899ced590N.exe
Size

40KB
Sample

240820-tzpaaasbqd
MD5

5503b83f32202c8a976c12b899ced590
SHA1

0338d8a16c0c751da73fb8a4f2a325b5e8ff9e0a
SHA256

27c3c95fc5d5055acfaddbed8d2b9fbc4021d9d65a6652db597e8721b41a52dd
SHA512

df723b8e1d4eb8d1eba15f9313643a7977bd67118f8a6d2a95f7971bbbd851bdf2c08bd6f22dfc66ed1f298d19ee240e0ed41d00bf2ba5dc98e08e01470d73dc
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42Lcfpb2N231F1Z:W7ZppApBULcfpHLcfpSo3fj

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5503b83f32202c8a976c12b899ced590N.exe
- Size
  
  40KB
- MD5
  
  5503b83f32202c8a976c12b899ced590
- SHA1
  
  0338d8a16c0c751da73fb8a4f2a325b5e8ff9e0a
- SHA256
  
  27c3c95fc5d5055acfaddbed8d2b9fbc4021d9d65a6652db597e8721b41a52dd
- SHA512
  
  df723b8e1d4eb8d1eba15f9313643a7977bd67118f8a6d2a95f7971bbbd851bdf2c08bd6f22dfc66ed1f298d19ee240e0ed41d00bf2ba5dc98e08e01470d73dc
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42Lcfpb2N231F1Z:W7ZppApBULcfpHLcfpSo3fj
Score

9^/10

discovery ransomware
- Renames multiple (3331) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware