b4643df6606f1e4fc0156e04d8221badf25ac060b6f8f39cd7e75d75052b2202 | Triage

Sharing

General

Target

cfc59e367bd1643953f6cf9b11cdd980N.exe
Size

46KB
Sample

240820-xzf6fssfpp
MD5

cfc59e367bd1643953f6cf9b11cdd980
SHA1

c43b213601307591bcf716384f79a864bb7a39a1
SHA256

b4643df6606f1e4fc0156e04d8221badf25ac060b6f8f39cd7e75d75052b2202
SHA512

69b04b801f5e8f9c251824087c530bf55662cc1aaa4b4b76d0c637b3cfe195e8e1ab0977f5b97b13e4b190fbda2f1abf8ffadfd3488de48ed1a17a5fdee3a4b3
SSDEEP

768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsM:W7ZhA7pApw03vR03vcltdtSsM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cfc59e367bd1643953f6cf9b11cdd980N.exe
- Size
  
  46KB
- MD5
  
  cfc59e367bd1643953f6cf9b11cdd980
- SHA1
  
  c43b213601307591bcf716384f79a864bb7a39a1
- SHA256
  
  b4643df6606f1e4fc0156e04d8221badf25ac060b6f8f39cd7e75d75052b2202
- SHA512
  
  69b04b801f5e8f9c251824087c530bf55662cc1aaa4b4b76d0c637b3cfe195e8e1ab0977f5b97b13e4b190fbda2f1abf8ffadfd3488de48ed1a17a5fdee3a4b3
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsM:W7ZhA7pApw03vR03vcltdtSsM
Score

9^/10

discovery ransomware
- Renames multiple (3289) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware