c216d5346bfed8c9e76fd77d23b0c3a6431febae4a790a5fa978a71a60d0b51d | Triage

Sharing

General

Target

31bd4405efacfae31a024b9b69a12490N.exe
Size

47KB
Sample

240823-jscmssvepj
MD5

31bd4405efacfae31a024b9b69a12490
SHA1

8e541b71e3ebc145c1b5cf2afee267559f64e218
SHA256

c216d5346bfed8c9e76fd77d23b0c3a6431febae4a790a5fa978a71a60d0b51d
SHA512

891cb53311f107ad5df7b32be90e7cab0c14aa2e84dd82ba8cd0bfde9bf90840bfa9c922c3b7649707448288f7da55e8f128b26739c05cdb6cb94053cbe6314a
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJSl2nAzKvDxl2nAzKvDgl:/7BlpQpARFbhq1K7nAkDanAkDg

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  31bd4405efacfae31a024b9b69a12490N.exe
- Size
  
  47KB
- MD5
  
  31bd4405efacfae31a024b9b69a12490
- SHA1
  
  8e541b71e3ebc145c1b5cf2afee267559f64e218
- SHA256
  
  c216d5346bfed8c9e76fd77d23b0c3a6431febae4a790a5fa978a71a60d0b51d
- SHA512
  
  891cb53311f107ad5df7b32be90e7cab0c14aa2e84dd82ba8cd0bfde9bf90840bfa9c922c3b7649707448288f7da55e8f128b26739c05cdb6cb94053cbe6314a
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJSl2nAzKvDxl2nAzKvDgl:/7BlpQpARFbhq1K7nAkDanAkDg
Score

9^/10

discovery ransomware
- Renames multiple (3192) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware