1700b896b4374815fb346941c94784c27743180f9092addb00afe3ee2f50dd2f | Triage

Sharing

General

Target

530100e30b51b27393a49f0b248c48f0N.exe
Size

98KB
Sample

240821-aa84lszfja
MD5

530100e30b51b27393a49f0b248c48f0
SHA1

d8d849e2ecefe2a2e004f04555ca47db048a12de
SHA256

1700b896b4374815fb346941c94784c27743180f9092addb00afe3ee2f50dd2f
SHA512

8b1ed2ce948cc63c2b050b16aba31ff9808b4376f97c1d0df1c3b6e26159026fec380464b8167f0727005bc73d747ab207eed6e74db7c7a75b4d9d0776274458
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBe:PqFF2Ie+efsLC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  530100e30b51b27393a49f0b248c48f0N.exe
- Size
  
  98KB
- MD5
  
  530100e30b51b27393a49f0b248c48f0
- SHA1
  
  d8d849e2ecefe2a2e004f04555ca47db048a12de
- SHA256
  
  1700b896b4374815fb346941c94784c27743180f9092addb00afe3ee2f50dd2f
- SHA512
  
  8b1ed2ce948cc63c2b050b16aba31ff9808b4376f97c1d0df1c3b6e26159026fec380464b8167f0727005bc73d747ab207eed6e74db7c7a75b4d9d0776274458
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBe:PqFF2Ie+efsLC
Score

9^/10

discovery ransomware
- Renames multiple (2936) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware