b0ccea3ce2f1bc7d79bada89d3585c9c74d03664ad5b1a58dec1399a3059f331 | Triage

Sharing

General

Target

3a1213132ddf537e89dfd42f9647e600N.exe
Size

34KB
Sample

240823-yqb1tavhrq
MD5

3a1213132ddf537e89dfd42f9647e600
SHA1

d1c545ab6a5c02ecb21ceddcfd731ea70a43bba8
SHA256

b0ccea3ce2f1bc7d79bada89d3585c9c74d03664ad5b1a58dec1399a3059f331
SHA512

4808be8ff3378982b89a692034c4e1e321585634093acf843bd9ce880e9dd4635b8726aad2cc1ff2103d17153eefeba555cf57e02370dd01170e588624915da7
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHZaza81:yBs7Br5xjL8AgA71FbhvDGO

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3a1213132ddf537e89dfd42f9647e600N.exe
- Size
  
  34KB
- MD5
  
  3a1213132ddf537e89dfd42f9647e600
- SHA1
  
  d1c545ab6a5c02ecb21ceddcfd731ea70a43bba8
- SHA256
  
  b0ccea3ce2f1bc7d79bada89d3585c9c74d03664ad5b1a58dec1399a3059f331
- SHA512
  
  4808be8ff3378982b89a692034c4e1e321585634093acf843bd9ce880e9dd4635b8726aad2cc1ff2103d17153eefeba555cf57e02370dd01170e588624915da7
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHZaza81:yBs7Br5xjL8AgA71FbhvDGO
Score

9^/10

discovery ransomware
- Renames multiple (3284) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware