721c0b1c6061f62466496d9a20fdbce11dbe709ff60792aa8a0fc0a726fc9fee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fee395b98b50b17f742fd5baed9241d0N.exe
Size

36KB
Sample

240821-llqbesvell
MD5

fee395b98b50b17f742fd5baed9241d0
SHA1

edf19dde5fa93ad590983f00c512465d959d07dd
SHA256

721c0b1c6061f62466496d9a20fdbce11dbe709ff60792aa8a0fc0a726fc9fee
SHA512

938e755f80346c6aa41c4d78813b996169f4dc396bd753ba88d9cad72b4ed1f990f11f3293add1122ca628ca35200ab1f4e544838a11c629def6db1bd47e8a9a
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHhpqNaYcJaYcmRsOcD:yBs7Br5xjL8AgA71FbhvsDYcUYcGcD

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  fee395b98b50b17f742fd5baed9241d0N.exe
- Size
  
  36KB
- MD5
  
  fee395b98b50b17f742fd5baed9241d0
- SHA1
  
  edf19dde5fa93ad590983f00c512465d959d07dd
- SHA256
  
  721c0b1c6061f62466496d9a20fdbce11dbe709ff60792aa8a0fc0a726fc9fee
- SHA512
  
  938e755f80346c6aa41c4d78813b996169f4dc396bd753ba88d9cad72b4ed1f990f11f3293add1122ca628ca35200ab1f4e544838a11c629def6db1bd47e8a9a
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHhpqNaYcJaYcmRsOcD:yBs7Br5xjL8AgA71FbhvsDYcUYcGcD
Score

9^/10

discovery ransomware
- Renames multiple (3301) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware