9c79d2cdb787643be1fbae43de9f76ce3a2a32db033c01c6c4d8e537233e76c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e90676b34d8c62fb1a4dbe557c51ca10N.exe
Size

41KB
Sample

240821-nzwrgaxajg
MD5

e90676b34d8c62fb1a4dbe557c51ca10
SHA1

c46acf256846a59fa585158c2b467f97f2d1ebf5
SHA256

9c79d2cdb787643be1fbae43de9f76ce3a2a32db033c01c6c4d8e537233e76c5
SHA512

d4999d27be14df8989103dbd8d3a2fcfb05c8586f49791ae8e93df3d5ae7b252ef0858019629133a8b9546fd5c613d1c29a63bcfde84afc480b3e85a28f9d661
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsSsr+rF:W7ZhA7pApM21LOA1LOl6vSsr+rF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e90676b34d8c62fb1a4dbe557c51ca10N.exe
- Size
  
  41KB
- MD5
  
  e90676b34d8c62fb1a4dbe557c51ca10
- SHA1
  
  c46acf256846a59fa585158c2b467f97f2d1ebf5
- SHA256
  
  9c79d2cdb787643be1fbae43de9f76ce3a2a32db033c01c6c4d8e537233e76c5
- SHA512
  
  d4999d27be14df8989103dbd8d3a2fcfb05c8586f49791ae8e93df3d5ae7b252ef0858019629133a8b9546fd5c613d1c29a63bcfde84afc480b3e85a28f9d661
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsSsr+rF:W7ZhA7pApM21LOA1LOl6vSsr+rF
Score

9^/10

discovery ransomware
- Renames multiple (3187) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware