ed6b488515c0c27c4cf2a255c038754ee058ff912c0d5112c71ee12b88661ed3 | Triage

Sharing

General

Target

ba3c16561b9c967b4f44380dfd8795a0N.exe
Size

39KB
Sample

240821-h5597swcld
MD5

ba3c16561b9c967b4f44380dfd8795a0
SHA1

dcf9ef12fbb388543ae09fc2259eea64f878c1d3
SHA256

ed6b488515c0c27c4cf2a255c038754ee058ff912c0d5112c71ee12b88661ed3
SHA512

6f7a52ade6b72e0352eec651f60ed141a18fb55f54a76df9c7dc4eaaa2b6e65b1f832b7b51aea567c13972a93fb650f4800a081aa4aadb0882f139589f2b5e76
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsSn:W7ZhA7pApM21LOA1LOl6vSn

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ba3c16561b9c967b4f44380dfd8795a0N.exe
- Size
  
  39KB
- MD5
  
  ba3c16561b9c967b4f44380dfd8795a0
- SHA1
  
  dcf9ef12fbb388543ae09fc2259eea64f878c1d3
- SHA256
  
  ed6b488515c0c27c4cf2a255c038754ee058ff912c0d5112c71ee12b88661ed3
- SHA512
  
  6f7a52ade6b72e0352eec651f60ed141a18fb55f54a76df9c7dc4eaaa2b6e65b1f832b7b51aea567c13972a93fb650f4800a081aa4aadb0882f139589f2b5e76
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsSn:W7ZhA7pApM21LOA1LOl6vSn
Score

9^/10

discovery ransomware
- Renames multiple (3261) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware