c517132950aea67d6bf8d5422cce1cb662d2d0965edebf47f4b031cdac11df8c | Triage

Sharing

General

Target

0baf8ebd4332a9469515d4e305109ce0N.exe
Size

81KB
Sample

240821-dpnm1a1dlp
MD5

0baf8ebd4332a9469515d4e305109ce0
SHA1

8d7832b388e68ab1045c50abaa0a18d1640bf052
SHA256

c517132950aea67d6bf8d5422cce1cb662d2d0965edebf47f4b031cdac11df8c
SHA512

206f956f554cd464d7a091f2fd5227b262197195e7848e128b9a9e54b29c9815e271acc2a36d99a719ad68bec9576028d26decad063c678910a7f88c86577395
SSDEEP

1536:W7ZNLpApCZrt8PWGoPWGANdN+hEwHwDvZvCs+jY:6NLWpCZIzjwHw6jY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0baf8ebd4332a9469515d4e305109ce0N.exe
- Size
  
  81KB
- MD5
  
  0baf8ebd4332a9469515d4e305109ce0
- SHA1
  
  8d7832b388e68ab1045c50abaa0a18d1640bf052
- SHA256
  
  c517132950aea67d6bf8d5422cce1cb662d2d0965edebf47f4b031cdac11df8c
- SHA512
  
  206f956f554cd464d7a091f2fd5227b262197195e7848e128b9a9e54b29c9815e271acc2a36d99a719ad68bec9576028d26decad063c678910a7f88c86577395
- SSDEEP
  
  1536:W7ZNLpApCZrt8PWGoPWGANdN+hEwHwDvZvCs+jY:6NLWpCZIzjwHw6jY
Score

9^/10

discovery ransomware
- Renames multiple (2902) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware