4de1a3690fe3ae0024427b916641b2a9e1b52ac8cc9527c3e2ba73254f8bc3a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc60f39638294b914d9ed1f680afe9b0N.exe
Size

44KB
Sample

240824-feb8bstena
MD5

dc60f39638294b914d9ed1f680afe9b0
SHA1

95936aae9cef63d4b0536f526bcb9e313ca641b1
SHA256

4de1a3690fe3ae0024427b916641b2a9e1b52ac8cc9527c3e2ba73254f8bc3a7
SHA512

34438ccbb081743de202e4226515fbbca5355b3635338e3075f16b80b9f500707127e598d6f91a7bfd8a51fcc8e483d0c6e7312d2c168b2b6ac81f75bb2ccb6a
SSDEEP

768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSo:W7ZppApBMyKoIWbsHfySkT5GeCyi348L

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  dc60f39638294b914d9ed1f680afe9b0N.exe
- Size
  
  44KB
- MD5
  
  dc60f39638294b914d9ed1f680afe9b0
- SHA1
  
  95936aae9cef63d4b0536f526bcb9e313ca641b1
- SHA256
  
  4de1a3690fe3ae0024427b916641b2a9e1b52ac8cc9527c3e2ba73254f8bc3a7
- SHA512
  
  34438ccbb081743de202e4226515fbbca5355b3635338e3075f16b80b9f500707127e598d6f91a7bfd8a51fcc8e483d0c6e7312d2c168b2b6ac81f75bb2ccb6a
- SSDEEP
  
  768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSo:W7ZppApBMyKoIWbsHfySkT5GeCyi348L
Score

9^/10

discovery ransomware
- Renames multiple (3254) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware