65554b4e7b125e04e67941ada11909471512080f4a0f8db5a24d766618cc850e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8628e4909123df3f7b4a7725da2ec80N.exe
Size

53KB
Sample

240821-gskx3atajb
MD5

d8628e4909123df3f7b4a7725da2ec80
SHA1

7d8bcc9292131fe0ed3a0fb07e70afc48daca995
SHA256

65554b4e7b125e04e67941ada11909471512080f4a0f8db5a24d766618cc850e
SHA512

cbef8775f03de6b53ce89738420b53eb43eb8fc5c4f31fed193ab193e68c35e980e937439b6a3d1323f0680391ffd7a8b8279e501c945e7da291626c3f27addc
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLS/3MMf/3MMy0U0czyKbNzzyKbN4bXE:W7Blp2sspARFbh5YSfffynfWK9WK0XE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d8628e4909123df3f7b4a7725da2ec80N.exe
- Size
  
  53KB
- MD5
  
  d8628e4909123df3f7b4a7725da2ec80
- SHA1
  
  7d8bcc9292131fe0ed3a0fb07e70afc48daca995
- SHA256
  
  65554b4e7b125e04e67941ada11909471512080f4a0f8db5a24d766618cc850e
- SHA512
  
  cbef8775f03de6b53ce89738420b53eb43eb8fc5c4f31fed193ab193e68c35e980e937439b6a3d1323f0680391ffd7a8b8279e501c945e7da291626c3f27addc
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvgqHqMjL4jLS/3MMf/3MMy0U0czyKbNzzyKbN4bXE:W7Blp2sspARFbh5YSfffynfWK9WK0XE
Score

9^/10

discovery ransomware
- Renames multiple (327) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware