aa4ca354d648045890cf4e10bfdb9e672689fba75b25d92de119e0efde090de5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fcf8b58b14bd963668dc74b7f24f3060N.exe
Size

56KB
Sample

240824-qp1c1ssckb
MD5

fcf8b58b14bd963668dc74b7f24f3060
SHA1

53a4504ca453cf4396358583e488e5e5a5c2d5c6
SHA256

aa4ca354d648045890cf4e10bfdb9e672689fba75b25d92de119e0efde090de5
SHA512

e599cd2d2965db6f7d86e6d4bf4e98f902d92597547bee49ceb1f370563f5848ed5b906b9e9f26cd648c0712db7c2794d76d30baa9d12d407cb217fcd085ff07
SSDEEP

768:W7BlpppARFbhbt7Y7wTCnBv0PcR0PcljybCPi1x+jybCPi1xM:W7ZppApCJRJlBaqBaQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  fcf8b58b14bd963668dc74b7f24f3060N.exe
- Size
  
  56KB
- MD5
  
  fcf8b58b14bd963668dc74b7f24f3060
- SHA1
  
  53a4504ca453cf4396358583e488e5e5a5c2d5c6
- SHA256
  
  aa4ca354d648045890cf4e10bfdb9e672689fba75b25d92de119e0efde090de5
- SHA512
  
  e599cd2d2965db6f7d86e6d4bf4e98f902d92597547bee49ceb1f370563f5848ed5b906b9e9f26cd648c0712db7c2794d76d30baa9d12d407cb217fcd085ff07
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCnBv0PcR0PcljybCPi1x+jybCPi1xM:W7ZppApCJRJlBaqBaQ
Score

9^/10

discovery ransomware
- Renames multiple (3261) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware