d0bb1ea9b40d3c352fb1ea1b117a4b886c04e906c792f2cf038fa23d1a2b866e | Triage

Sharing

General

Target

1692f5add1df453799159ed8611014d0N.exe
Size

62KB
Sample

240824-esk7qasekb
MD5

1692f5add1df453799159ed8611014d0
SHA1

cb2ca5b868e4e4f5d1d7e9f08d390b7b01b5ba8e
SHA256

d0bb1ea9b40d3c352fb1ea1b117a4b886c04e906c792f2cf038fa23d1a2b866e
SHA512

d36205bc04d5ad91cdbda7536be5ccce60e203f52d4e9ef0b2aec5555a0f7745b83354758fc9d8e97fe29d982d1820977a9bc91a5b246618f96dac3ad808702a
SSDEEP

768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nkSO1w:/7ZQpApmi6nkS5

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1692f5add1df453799159ed8611014d0N.exe
- Size
  
  62KB
- MD5
  
  1692f5add1df453799159ed8611014d0
- SHA1
  
  cb2ca5b868e4e4f5d1d7e9f08d390b7b01b5ba8e
- SHA256
  
  d0bb1ea9b40d3c352fb1ea1b117a4b886c04e906c792f2cf038fa23d1a2b866e
- SHA512
  
  d36205bc04d5ad91cdbda7536be5ccce60e203f52d4e9ef0b2aec5555a0f7745b83354758fc9d8e97fe29d982d1820977a9bc91a5b246618f96dac3ad808702a
- SSDEEP
  
  768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nkSO1w:/7ZQpApmi6nkS5
Score

9^/10

discovery ransomware
- Renames multiple (2973) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware