a86fee3f64ec66d456077f4a3111941edda6014643a96f4df2fd81334545c896 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1165495adceeb580b6782b86558d61f0N.exe
Size

64KB
Sample

240823-mt5xhszbjb
MD5

1165495adceeb580b6782b86558d61f0
SHA1

d28e0916cd04198c74dd528eabce3adb78ecd8f5
SHA256

a86fee3f64ec66d456077f4a3111941edda6014643a96f4df2fd81334545c896
SHA512

9720106a19801cb1883a170ed78c4688c525aded0c2ea63db10acb6b790ed0e6db6a6c9f080e4f6e4955d12f33dccf2ca0a820d3b5afe89cd3d69615b13e1b79
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EUZ/C:W7ZppApBULcfpHLcfpX2/Nw/NwmxP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1165495adceeb580b6782b86558d61f0N.exe
- Size
  
  64KB
- MD5
  
  1165495adceeb580b6782b86558d61f0
- SHA1
  
  d28e0916cd04198c74dd528eabce3adb78ecd8f5
- SHA256
  
  a86fee3f64ec66d456077f4a3111941edda6014643a96f4df2fd81334545c896
- SHA512
  
  9720106a19801cb1883a170ed78c4688c525aded0c2ea63db10acb6b790ed0e6db6a6c9f080e4f6e4955d12f33dccf2ca0a820d3b5afe89cd3d69615b13e1b79
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/EUZ/C:W7ZppApBULcfpHLcfpX2/Nw/NwmxP
Score

9^/10

discovery ransomware
- Renames multiple (404) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware