f8d7e79b34f89d9935eaf13ce3c38a712dc73e8b0d1f682a788bf8baf6ff5633 | Triage

Sharing

General

Target

fbf36d35b75316a5451bae74588e4d90N.exe
Size

69KB
Sample

240821-lhzqpa1cna
MD5

fbf36d35b75316a5451bae74588e4d90
SHA1

1355430ab8ee28f3933dfdfa2a67012ea1c2baca
SHA256

f8d7e79b34f89d9935eaf13ce3c38a712dc73e8b0d1f682a788bf8baf6ff5633
SHA512

ef72fc8e727bcc40821e8cbf0c57a6837059d6116d744d2227ebd22325d8df714a90575207d9bf1f37859417a8c8a8fafe7602e0c2a8f7d6acf370b4d2adf023
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPSSZSo:6pWpUnDXxXs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  fbf36d35b75316a5451bae74588e4d90N.exe
- Size
  
  69KB
- MD5
  
  fbf36d35b75316a5451bae74588e4d90
- SHA1
  
  1355430ab8ee28f3933dfdfa2a67012ea1c2baca
- SHA256
  
  f8d7e79b34f89d9935eaf13ce3c38a712dc73e8b0d1f682a788bf8baf6ff5633
- SHA512
  
  ef72fc8e727bcc40821e8cbf0c57a6837059d6116d744d2227ebd22325d8df714a90575207d9bf1f37859417a8c8a8fafe7602e0c2a8f7d6acf370b4d2adf023
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPSSZSo:6pWpUnDXxXs
Score

9^/10

discovery ransomware
- Renames multiple (3153) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware