6d967da7c86c5853aaa6976d0e70bf2682339d0468d3abfe8116a257317f2376 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c84f7dc57381e6b5a406c58379009230N.exe
Size

45KB
Sample

240823-r33kzazfnf
MD5

c84f7dc57381e6b5a406c58379009230
SHA1

35a1c6d5ca7e67d16c8d7987406610fbf8c0b0a9
SHA256

6d967da7c86c5853aaa6976d0e70bf2682339d0468d3abfe8116a257317f2376
SHA512

669f770ae3874cf14df7d0e64c170b7681c241c789e83aad79bbd29ff3c8671647d84e4d8d49768a55b221d5d88ba7731519b5d97be7b171107fdc3902b6ba40
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzYYo8F8S:/7BlpQpARFbhNIYYo8F8S

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c84f7dc57381e6b5a406c58379009230N.exe
- Size
  
  45KB
- MD5
  
  c84f7dc57381e6b5a406c58379009230
- SHA1
  
  35a1c6d5ca7e67d16c8d7987406610fbf8c0b0a9
- SHA256
  
  6d967da7c86c5853aaa6976d0e70bf2682339d0468d3abfe8116a257317f2376
- SHA512
  
  669f770ae3874cf14df7d0e64c170b7681c241c789e83aad79bbd29ff3c8671647d84e4d8d49768a55b221d5d88ba7731519b5d97be7b171107fdc3902b6ba40
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzYYo8F8S:/7BlpQpARFbhNIYYo8F8S
Score

9^/10

discovery ransomware
- Renames multiple (3218) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware