117f076b3752720a41fea9c2e32b0da98c90e857527afd33e57ecdb3f6f696ca | Triage

Sharing

General

Target

ced5b30cf7d82d04d9017e95b8edb6b0N.exe
Size

98KB
Sample

240824-zlw1vsydqa
MD5

ced5b30cf7d82d04d9017e95b8edb6b0
SHA1

14fe72778e46a5e535473a69c355cbe21dda8285
SHA256

117f076b3752720a41fea9c2e32b0da98c90e857527afd33e57ecdb3f6f696ca
SHA512

f1a047517412472f08bd61b20070464820ea5f3e0aad52d5ecb64c8972f80747f214bfd82e11574c32e206c41ccf9274169a0fb0a428f8cef9aea890bffc5296
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fB:RqKvb0CYJ973e+eKZOf7fB

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ced5b30cf7d82d04d9017e95b8edb6b0N.exe
- Size
  
  98KB
- MD5
  
  ced5b30cf7d82d04d9017e95b8edb6b0
- SHA1
  
  14fe72778e46a5e535473a69c355cbe21dda8285
- SHA256
  
  117f076b3752720a41fea9c2e32b0da98c90e857527afd33e57ecdb3f6f696ca
- SHA512
  
  f1a047517412472f08bd61b20070464820ea5f3e0aad52d5ecb64c8972f80747f214bfd82e11574c32e206c41ccf9274169a0fb0a428f8cef9aea890bffc5296
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fB:RqKvb0CYJ973e+eKZOf7fB
Score

9^/10

discovery ransomware
- Renames multiple (2922) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware