3ecbc7a119418dfb1f8310bb66653dbe3e170620dfb50158c5900202d28a31f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8d3d6e7211b822e6cd25dad1e9692be0N.exe
Size

61KB
Sample

240821-22xcnszajr
MD5

8d3d6e7211b822e6cd25dad1e9692be0
SHA1

ed6ddb6949664f75f95a918a389ce69159ddddea
SHA256

3ecbc7a119418dfb1f8310bb66653dbe3e170620dfb50158c5900202d28a31f9
SHA512

c5f71d23fcb21b50d46fa0df27ec78824a5d811947b78ec61b252cedb3cd672faa5814f0f08710fa2e1ee4becdb46de86052507621342ac6cc375413ff5d5121
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/GG2GQ:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd1b

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8d3d6e7211b822e6cd25dad1e9692be0N.exe
- Size
  
  61KB
- MD5
  
  8d3d6e7211b822e6cd25dad1e9692be0
- SHA1
  
  ed6ddb6949664f75f95a918a389ce69159ddddea
- SHA256
  
  3ecbc7a119418dfb1f8310bb66653dbe3e170620dfb50158c5900202d28a31f9
- SHA512
  
  c5f71d23fcb21b50d46fa0df27ec78824a5d811947b78ec61b252cedb3cd672faa5814f0f08710fa2e1ee4becdb46de86052507621342ac6cc375413ff5d5121
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/GG2GQ:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd1b
Score

9^/10

discovery ransomware
- Renames multiple (308) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware