8c7e554cfa62c050476e923de55e2874a7b8e03a39972383e2e8c0036db12040 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16c9914ccf41ce227fe60f18761f7340N.exe
Size

95KB
Sample

240821-bbtkzswcpp
MD5

16c9914ccf41ce227fe60f18761f7340
SHA1

71b291a9103a7776a1af0822733e0452fd70506c
SHA256

8c7e554cfa62c050476e923de55e2874a7b8e03a39972383e2e8c0036db12040
SHA512

123f08bed8e1fc5816f927de6d1835f03680ea702da061a4b065dd9256c1914d8a862202136531baf2879a8ff98e3859df80a78aa8dcffe3e2b6d0fce7adf3ba
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhb:6pWpUFpEhLfyBtPf50FWkFpPDze/qFs6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  16c9914ccf41ce227fe60f18761f7340N.exe
- Size
  
  95KB
- MD5
  
  16c9914ccf41ce227fe60f18761f7340
- SHA1
  
  71b291a9103a7776a1af0822733e0452fd70506c
- SHA256
  
  8c7e554cfa62c050476e923de55e2874a7b8e03a39972383e2e8c0036db12040
- SHA512
  
  123f08bed8e1fc5816f927de6d1835f03680ea702da061a4b065dd9256c1914d8a862202136531baf2879a8ff98e3859df80a78aa8dcffe3e2b6d0fce7adf3ba
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhb:6pWpUFpEhLfyBtPf50FWkFpPDze/qFs6
Score

9^/10

discovery ransomware
- Renames multiple (3094) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware