947ad9904ff20a5c8376a5c10a6a5333c60bdf75498a8e3520853d9c61e33839 | Triage

Sharing

General

Target

ce6591407d05a23a06529fb6ba686570N.exe
Size

52KB
Sample

240824-cczzts1gpl
MD5

ce6591407d05a23a06529fb6ba686570
SHA1

0e9e7f2a9e408854bf067eec828787932ecd390c
SHA256

947ad9904ff20a5c8376a5c10a6a5333c60bdf75498a8e3520853d9c61e33839
SHA512

8ee21a9b6c23ffa1727564c9aca3966d25196b4628826c418310e11354e627a35f8d43a918915719b4f4cdf586a70b9ddd4569d3a39c23a9e904ead3f7f1ed47
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7lSKSW7afHFCSW7afHFE:W7ZhA7pApw03vR03vxSKSWu0SWua

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ce6591407d05a23a06529fb6ba686570N.exe
- Size
  
  52KB
- MD5
  
  ce6591407d05a23a06529fb6ba686570
- SHA1
  
  0e9e7f2a9e408854bf067eec828787932ecd390c
- SHA256
  
  947ad9904ff20a5c8376a5c10a6a5333c60bdf75498a8e3520853d9c61e33839
- SHA512
  
  8ee21a9b6c23ffa1727564c9aca3966d25196b4628826c418310e11354e627a35f8d43a918915719b4f4cdf586a70b9ddd4569d3a39c23a9e904ead3f7f1ed47
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7lSKSW7afHFCSW7afHFE:W7ZhA7pApw03vR03vxSKSWu0SWua
Score

9^/10

discovery ransomware
- Renames multiple (406) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware