030b0c911585e6d24d480c817f34fd9e157146a89607710762f15d62380d9099 | Triage

Sharing

General

Target

99168f0a5be4accdb8c6cb07b24376c0N.exe
Size

48KB
Sample

240821-v4cmqavdrj
MD5

99168f0a5be4accdb8c6cb07b24376c0
SHA1

1caeb3a88f9017905ce51b02f4389becc2e29ec5
SHA256

030b0c911585e6d24d480c817f34fd9e157146a89607710762f15d62380d9099
SHA512

c1d39001d9c74e2f8f6bb52ca6f5ceffdea5b769088c35f6093de3abc6baa77b8a5c2bb71d2d39acf8edb5d96bccf97c50304848ef3317b0a39d7b1397ec88a1
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iqja9jaJS/A/A:/7BlpQpARFbhNIiJwsJwwnZ+S/A/A

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  99168f0a5be4accdb8c6cb07b24376c0N.exe
- Size
  
  48KB
- MD5
  
  99168f0a5be4accdb8c6cb07b24376c0
- SHA1
  
  1caeb3a88f9017905ce51b02f4389becc2e29ec5
- SHA256
  
  030b0c911585e6d24d480c817f34fd9e157146a89607710762f15d62380d9099
- SHA512
  
  c1d39001d9c74e2f8f6bb52ca6f5ceffdea5b769088c35f6093de3abc6baa77b8a5c2bb71d2d39acf8edb5d96bccf97c50304848ef3317b0a39d7b1397ec88a1
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iqja9jaJS/A/A:/7BlpQpARFbhNIiJwsJwwnZ+S/A/A
Score

9^/10

discovery ransomware
- Renames multiple (3250) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware