426cf7f68ec7e78f4b2a559ac63471425cdc183de1fe9e92138d16d43f685d29 | Triage

Sharing

General

Target

ee5bcbc24d43dc916ec79e5bb648dbb0N.exe
Size

54KB
Sample

240825-py62gsvcqa
MD5

ee5bcbc24d43dc916ec79e5bb648dbb0
SHA1

fff0082f7e48eda334df1a4ad01ca84efc974416
SHA256

426cf7f68ec7e78f4b2a559ac63471425cdc183de1fe9e92138d16d43f685d29
SHA512

b5cc33b4a8c5073c1e8e1981c4629c6545d8c97eeab6a0a337e950fbba92b530cc09e435b5f132141541fc6cc8046e40f22d8f520f5a5b8d660bdaf86ea77d4d
SSDEEP

768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiaj7:W7ZhA7dABJJ7TTQoQE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ee5bcbc24d43dc916ec79e5bb648dbb0N.exe
- Size
  
  54KB
- MD5
  
  ee5bcbc24d43dc916ec79e5bb648dbb0
- SHA1
  
  fff0082f7e48eda334df1a4ad01ca84efc974416
- SHA256
  
  426cf7f68ec7e78f4b2a559ac63471425cdc183de1fe9e92138d16d43f685d29
- SHA512
  
  b5cc33b4a8c5073c1e8e1981c4629c6545d8c97eeab6a0a337e950fbba92b530cc09e435b5f132141541fc6cc8046e40f22d8f520f5a5b8d660bdaf86ea77d4d
- SSDEEP
  
  768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiaj7:W7ZhA7dABJJ7TTQoQE
Score

9^/10

discovery ransomware
- Renames multiple (3413) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware