09267f94ecd815733ec56bcd08f21a587ec480591494aabb7e111934ca4130df | Triage

Sharing

General

Target

4db6c16680429d51a09913bcc2544550N.exe
Size

47KB
Sample

240821-q4aqxavelk
MD5

4db6c16680429d51a09913bcc2544550
SHA1

c1408962a66788424095cb4101c914f8bd5a31c6
SHA256

09267f94ecd815733ec56bcd08f21a587ec480591494aabb7e111934ca4130df
SHA512

caf4a6ba86909c25cac6149ef584b43302fc01401cf20eadf1b85c64905f436ba60a41799413208ac068eef72309b2f6e98d3ed6491e7f1ea62131c94a07a2d7
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFl:W7ZppApBULcfpHLcfpyDl

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4db6c16680429d51a09913bcc2544550N.exe
- Size
  
  47KB
- MD5
  
  4db6c16680429d51a09913bcc2544550
- SHA1
  
  c1408962a66788424095cb4101c914f8bd5a31c6
- SHA256
  
  09267f94ecd815733ec56bcd08f21a587ec480591494aabb7e111934ca4130df
- SHA512
  
  caf4a6ba86909c25cac6149ef584b43302fc01401cf20eadf1b85c64905f436ba60a41799413208ac068eef72309b2f6e98d3ed6491e7f1ea62131c94a07a2d7
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFl:W7ZppApBULcfpHLcfpyDl
Score

9^/10

discovery ransomware
- Renames multiple (3246) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware