05a514971499c85d4d93912f13bf18a43e8e0572ef0a5ef20ddd5ec2bae77ebd | Triage

Sharing

General

Target

dc2577219599c45c234fc0a35bd265e0N.exe
Size

47KB
Sample

240821-myqcmayaml
MD5

dc2577219599c45c234fc0a35bd265e0
SHA1

edef92d666d2dacd39b488eb17b477538f395434
SHA256

05a514971499c85d4d93912f13bf18a43e8e0572ef0a5ef20ddd5ec2bae77ebd
SHA512

f7a9c518771ab5e46d144dbc030a25646c0f9efe7508ddef83fa6af5d8cd45268bbc230f3a530f2365b60da87d01616f9ad2b2e2809d12e848d6763a995d54e3
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFXpK5c5khwRDThwRDvou7Oi1J/x+Oi7:W7ZppApBULcfpHLcfpyDA6swXwxD2Dz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  dc2577219599c45c234fc0a35bd265e0N.exe
- Size
  
  47KB
- MD5
  
  dc2577219599c45c234fc0a35bd265e0
- SHA1
  
  edef92d666d2dacd39b488eb17b477538f395434
- SHA256
  
  05a514971499c85d4d93912f13bf18a43e8e0572ef0a5ef20ddd5ec2bae77ebd
- SHA512
  
  f7a9c518771ab5e46d144dbc030a25646c0f9efe7508ddef83fa6af5d8cd45268bbc230f3a530f2365b60da87d01616f9ad2b2e2809d12e848d6763a995d54e3
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFXpK5c5khwRDThwRDvou7Oi1J/x+Oi7:W7ZppApBULcfpHLcfpyDA6swXwxD2Dz
Score

9^/10

discovery ransomware
- Renames multiple (3118) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware