5f4c661a48435c2f36a318eaf46048345f2032a314305fdd19ac49c917ece518 | Triage

Sharing

General

Target

c5d91b6b05eba83e0517ba7c6edd8d80N.exe
Size

93KB
Sample

240823-v9nl6sxfnf
MD5

c5d91b6b05eba83e0517ba7c6edd8d80
SHA1

9aafa0b2dbe92fee61b576671c296b16df2292db
SHA256

5f4c661a48435c2f36a318eaf46048345f2032a314305fdd19ac49c917ece518
SHA512

f0780e873073a0c3a8b7e1a13bbdd1d47974ab8bf9727f496c1fd4bee5f5fa9d300197288b909a3842755770cb004444732ed4fcc923d8fd76e7d8f64c6d4a51
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhR:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c5d91b6b05eba83e0517ba7c6edd8d80N.exe
- Size
  
  93KB
- MD5
  
  c5d91b6b05eba83e0517ba7c6edd8d80
- SHA1
  
  9aafa0b2dbe92fee61b576671c296b16df2292db
- SHA256
  
  5f4c661a48435c2f36a318eaf46048345f2032a314305fdd19ac49c917ece518
- SHA512
  
  f0780e873073a0c3a8b7e1a13bbdd1d47974ab8bf9727f496c1fd4bee5f5fa9d300197288b909a3842755770cb004444732ed4fcc923d8fd76e7d8f64c6d4a51
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhR:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsY
Score

9^/10

discovery ransomware
- Renames multiple (333) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware