e04f5a52301b0c27207660363a7c359bafe357ac6cd76a7b0e41b2d3c8ea2e3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

386a5e2d6948d4402a04ed0068008f10N.exe
Size

55KB
Sample

240824-2awl3avckp
MD5

386a5e2d6948d4402a04ed0068008f10
SHA1

92e3f19536e95bde972a576e58baeafdbd7f37d9
SHA256

e04f5a52301b0c27207660363a7c359bafe357ac6cd76a7b0e41b2d3c8ea2e3b
SHA512

461c227e9f0a9481960b58bfacd3dbe90057880f3414db9d5d8b392fc674100d0f3aa70559cdd18fa3114e8717301563c02e7c7630f98aa03e400c19c188893b
SSDEEP

192:tACUADIY0Br5xjL/VA7AgAQmP1oynLb22vb8j18jdeLS9I/sExeLS9I/sEP:GBt7Br5xjL9A7AgA71Fbhvg+oUnUQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  386a5e2d6948d4402a04ed0068008f10N.exe
- Size
  
  55KB
- MD5
  
  386a5e2d6948d4402a04ed0068008f10
- SHA1
  
  92e3f19536e95bde972a576e58baeafdbd7f37d9
- SHA256
  
  e04f5a52301b0c27207660363a7c359bafe357ac6cd76a7b0e41b2d3c8ea2e3b
- SHA512
  
  461c227e9f0a9481960b58bfacd3dbe90057880f3414db9d5d8b392fc674100d0f3aa70559cdd18fa3114e8717301563c02e7c7630f98aa03e400c19c188893b
- SSDEEP
  
  192:tACUADIY0Br5xjL/VA7AgAQmP1oynLb22vb8j18jdeLS9I/sExeLS9I/sEP:GBt7Br5xjL9A7AgA71Fbhvg+oUnUQ
Score

9^/10

discovery ransomware
- Renames multiple (339) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware