b88c3bab512736c8f9a75b62779e69d4283e964c372833987d5d5ee0bf2d11ab | Triage

Sharing

General

Target

fe17c36b3ba9cb653ed750f271a20040N.exe
Size

48KB
Sample

240820-v249ysycqm
MD5

fe17c36b3ba9cb653ed750f271a20040
SHA1

4ccc3569c22d274eff740afd668c5bddc077c9cc
SHA256

b88c3bab512736c8f9a75b62779e69d4283e964c372833987d5d5ee0bf2d11ab
SHA512

b2875bea0ce4a1ce727e527228944e037c742ec02987346cb38097eb7c86490d349ba1072e1160e9d8f27cf9300de440100a546802e9ffd752f3ef3721701f20
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7cY9xTMaa1xTMaaQ:W7ZhA7pApw03vR03v4Y9xha1xhaQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  fe17c36b3ba9cb653ed750f271a20040N.exe
- Size
  
  48KB
- MD5
  
  fe17c36b3ba9cb653ed750f271a20040
- SHA1
  
  4ccc3569c22d274eff740afd668c5bddc077c9cc
- SHA256
  
  b88c3bab512736c8f9a75b62779e69d4283e964c372833987d5d5ee0bf2d11ab
- SHA512
  
  b2875bea0ce4a1ce727e527228944e037c742ec02987346cb38097eb7c86490d349ba1072e1160e9d8f27cf9300de440100a546802e9ffd752f3ef3721701f20
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7cY9xTMaa1xTMaaQ:W7ZhA7pApw03vR03v4Y9xha1xhaQ
Score

9^/10

discovery ransomware
- Renames multiple (3166) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware