f9fc3e4294bca615f97a44a96b04f7d725040878cfd883a58ccdcea2da70b03e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f67c308ae1bc09e6b50470f07e98150N.exe
Size

45KB
Sample

240823-wplshsyblb
MD5

2f67c308ae1bc09e6b50470f07e98150
SHA1

b91a41cf14470712edbb5bd820ebfef5130f641a
SHA256

f9fc3e4294bca615f97a44a96b04f7d725040878cfd883a58ccdcea2da70b03e
SHA512

00440b6db2ea93ffc2192d7355bab16492a083d8bf3a168210e55a4c688627e4fe297f744c62bbdfbc59fe75364d770510e0b919643138ab0e8f5d3d580bc832
SSDEEP

768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBApwpp:W7ZhA7dABJJZENTBAOz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2f67c308ae1bc09e6b50470f07e98150N.exe
- Size
  
  45KB
- MD5
  
  2f67c308ae1bc09e6b50470f07e98150
- SHA1
  
  b91a41cf14470712edbb5bd820ebfef5130f641a
- SHA256
  
  f9fc3e4294bca615f97a44a96b04f7d725040878cfd883a58ccdcea2da70b03e
- SHA512
  
  00440b6db2ea93ffc2192d7355bab16492a083d8bf3a168210e55a4c688627e4fe297f744c62bbdfbc59fe75364d770510e0b919643138ab0e8f5d3d580bc832
- SSDEEP
  
  768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBApwpp:W7ZhA7dABJJZENTBAOz
Score

9^/10

discovery ransomware
- Renames multiple (3188) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware