5dee820b8aebfcbed566bda35d97e6a854d448db4dc84e70ccb3a2c15d355dcb | Triage

Sharing

General

Target

35f72eb0c9a536fe56450237e8728160N.exe
Size

40KB
Sample

240825-as7cqsybka
MD5

35f72eb0c9a536fe56450237e8728160
SHA1

a1f099cfe0bbd7509a2a9c0ab03f6a72502cbe4b
SHA256

5dee820b8aebfcbed566bda35d97e6a854d448db4dc84e70ccb3a2c15d355dcb
SHA512

c600030046efca8d91ba47ddc238404ee3867b198f420b10d8a3c7eb1a925fa4fcb0dddeb1786daef722f2319bd95acf0954a227d72f72134e7c7d998ae7c00a
SSDEEP

384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+8t8YwTZ+kZsAZsI:W7Blp+pARFbhBgnKL+8t8NZ/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  35f72eb0c9a536fe56450237e8728160N.exe
- Size
  
  40KB
- MD5
  
  35f72eb0c9a536fe56450237e8728160
- SHA1
  
  a1f099cfe0bbd7509a2a9c0ab03f6a72502cbe4b
- SHA256
  
  5dee820b8aebfcbed566bda35d97e6a854d448db4dc84e70ccb3a2c15d355dcb
- SHA512
  
  c600030046efca8d91ba47ddc238404ee3867b198f420b10d8a3c7eb1a925fa4fcb0dddeb1786daef722f2319bd95acf0954a227d72f72134e7c7d998ae7c00a
- SSDEEP
  
  384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+8t8YwTZ+kZsAZsI:W7Blp+pARFbhBgnKL+8t8NZ/
Score

9^/10

discovery ransomware
- Renames multiple (3420) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware