d780058dc2d54ef20013ef29d3e5cb2bf550244bbcfb964f6286fefe987ae70e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6fffadad59888ee3a609dc4abd876f0N.exe
Size

94KB
Sample

240824-qte8mssdng
MD5

e6fffadad59888ee3a609dc4abd876f0
SHA1

157aa4c2e68c56af283cb2496baf31f20216e621
SHA256

d780058dc2d54ef20013ef29d3e5cb2bf550244bbcfb964f6286fefe987ae70e
SHA512

e57ed9c99af2551159ec648f04b696bd74b5fb44adb16cebce36d99d628c5eec7f342bb0068fd5ba3c9ac8b88b6509ecc9ddd264bc60ea74b2f3ab277be0f2cf
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYY:6e7WpMaxeb0CYJ97lEYNR73e+eGGr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e6fffadad59888ee3a609dc4abd876f0N.exe
- Size
  
  94KB
- MD5
  
  e6fffadad59888ee3a609dc4abd876f0
- SHA1
  
  157aa4c2e68c56af283cb2496baf31f20216e621
- SHA256
  
  d780058dc2d54ef20013ef29d3e5cb2bf550244bbcfb964f6286fefe987ae70e
- SHA512
  
  e57ed9c99af2551159ec648f04b696bd74b5fb44adb16cebce36d99d628c5eec7f342bb0068fd5ba3c9ac8b88b6509ecc9ddd264bc60ea74b2f3ab277be0f2cf
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYY:6e7WpMaxeb0CYJ97lEYNR73e+eGGr
Score

9^/10

discovery ransomware
- Renames multiple (3141) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware