222c0f99329d175b62634f0ca3543c7a2c8d654f0707040570f50271fe1a1778 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45d1a08ad1ba7ed5e5353cabc16bb0b0N.exe
Size

44KB
Sample

240822-zxhbvazglr
MD5

45d1a08ad1ba7ed5e5353cabc16bb0b0
SHA1

16a77a785a52cd991071c431fcb6374fb87d9b6b
SHA256

222c0f99329d175b62634f0ca3543c7a2c8d654f0707040570f50271fe1a1778
SHA512

2ccba162638d466ae077f34aa866d8f07cd4b406b48858257ab2d0c2d3d52e5342cb8befb8ae200d51fe32b800d5ee62e0e98425ef7bda300f9ebd3a0a45ab90
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyLlE:W7ZppApyVyjVyLlE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  45d1a08ad1ba7ed5e5353cabc16bb0b0N.exe
- Size
  
  44KB
- MD5
  
  45d1a08ad1ba7ed5e5353cabc16bb0b0
- SHA1
  
  16a77a785a52cd991071c431fcb6374fb87d9b6b
- SHA256
  
  222c0f99329d175b62634f0ca3543c7a2c8d654f0707040570f50271fe1a1778
- SHA512
  
  2ccba162638d466ae077f34aa866d8f07cd4b406b48858257ab2d0c2d3d52e5342cb8befb8ae200d51fe32b800d5ee62e0e98425ef7bda300f9ebd3a0a45ab90
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyLlE:W7ZppApyVyjVyLlE
Score

9^/10

discovery ransomware
- Renames multiple (3162) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware