76ca06b325f97e6cc3c6ccdaaa13c802ce7627b3c63e8a1f20a33bf294fb6a48 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

312579dab067bf1420cffbac68d211d0N.exe
Size

143KB
Sample

240821-zqemdatfkl
MD5

312579dab067bf1420cffbac68d211d0
SHA1

026dc642d61106a57e75165a2f7da8e484c6ec74
SHA256

76ca06b325f97e6cc3c6ccdaaa13c802ce7627b3c63e8a1f20a33bf294fb6a48
SHA512

1e181863787b9a8eeb95d7bb5fa8e77d7b82f62fccf91e65c6f6c268aac54a8fa95eb280d172a336496467c08961c92d39b32767c61a1b096fb665d7a2ef4075
SSDEEP

1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8zxQOtOcvOCg7WBaMrDOj:6e76mQSoJmaAe

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  312579dab067bf1420cffbac68d211d0N.exe
- Size
  
  143KB
- MD5
  
  312579dab067bf1420cffbac68d211d0
- SHA1
  
  026dc642d61106a57e75165a2f7da8e484c6ec74
- SHA256
  
  76ca06b325f97e6cc3c6ccdaaa13c802ce7627b3c63e8a1f20a33bf294fb6a48
- SHA512
  
  1e181863787b9a8eeb95d7bb5fa8e77d7b82f62fccf91e65c6f6c268aac54a8fa95eb280d172a336496467c08961c92d39b32767c61a1b096fb665d7a2ef4075
- SSDEEP
  
  1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8zxQOtOcvOCg7WBaMrDOj:6e76mQSoJmaAe
Score

9^/10

discovery ransomware
- Renames multiple (305) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware