1cad9b1bd855323cea58ad29b08555d3b48078f42c8443898e9ba9109215a0e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2801c513bb63c9105d83b039bf0bf8c0N.exe
Size

52KB
Sample

240820-vmhseaxemj
MD5

2801c513bb63c9105d83b039bf0bf8c0
SHA1

0385e697e722e87e552eeaa2139b3942428e49b5
SHA256

1cad9b1bd855323cea58ad29b08555d3b48078f42c8443898e9ba9109215a0e4
SHA512

1216bef17ba69b071655067901e077755aa6e64101dd681f39707fccb0d541e2e46a1c552bdf0cf049ad3b626e8bc9bc319351aa35563069644700989bfc8200
SSDEEP

768:W7BlpppARFbhFAxC7ntkntV/H41nVyjVyy:W7ZppApry1EVyjVyy

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2801c513bb63c9105d83b039bf0bf8c0N.exe
- Size
  
  52KB
- MD5
  
  2801c513bb63c9105d83b039bf0bf8c0
- SHA1
  
  0385e697e722e87e552eeaa2139b3942428e49b5
- SHA256
  
  1cad9b1bd855323cea58ad29b08555d3b48078f42c8443898e9ba9109215a0e4
- SHA512
  
  1216bef17ba69b071655067901e077755aa6e64101dd681f39707fccb0d541e2e46a1c552bdf0cf049ad3b626e8bc9bc319351aa35563069644700989bfc8200
- SSDEEP
  
  768:W7BlpppARFbhFAxC7ntkntV/H41nVyjVyy:W7ZppApry1EVyjVyy
Score

9^/10

discovery ransomware
- Renames multiple (3276) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware