145d4a7abe64e78ae5674756875f606ce3ce788c94d72913e28b2fbcd2c1ba22 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

787e6e769cd979c95a36ef15b9a0c540N.exe
Size

194KB
Sample

240828-21gktsshjm
MD5

787e6e769cd979c95a36ef15b9a0c540
SHA1

2d55887261a282b8eb77e09fe783c0f595a196a6
SHA256

145d4a7abe64e78ae5674756875f606ce3ce788c94d72913e28b2fbcd2c1ba22
SHA512

66a9d88e31087522a38b268eaf4b8e0d285faaaa5483569beaf5ef8970ec1f4f548bb775291a55876a9d16b21b774eebf41acc888bc35028fd20eddef357c1c2
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkg:RqKB+tOkWKR0iJ0lTzkg

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  787e6e769cd979c95a36ef15b9a0c540N.exe
- Size
  
  194KB
- MD5
  
  787e6e769cd979c95a36ef15b9a0c540
- SHA1
  
  2d55887261a282b8eb77e09fe783c0f595a196a6
- SHA256
  
  145d4a7abe64e78ae5674756875f606ce3ce788c94d72913e28b2fbcd2c1ba22
- SHA512
  
  66a9d88e31087522a38b268eaf4b8e0d285faaaa5483569beaf5ef8970ec1f4f548bb775291a55876a9d16b21b774eebf41acc888bc35028fd20eddef357c1c2
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkg:RqKB+tOkWKR0iJ0lTzkg
Score

9^/10

discovery ransomware
- Renames multiple (2693) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware