80d3c315c6e0ad5e9fba75282a709ac2a10be76df3ce015aefe3f30e4e026f89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26065b3d721f765273fcf0076fdd7420N.exe
Size

47KB
Sample

240829-hazh6sxgld
MD5

26065b3d721f765273fcf0076fdd7420
SHA1

4248e1d117beb77a4c10bb3a3b09311d015775b9
SHA256

80d3c315c6e0ad5e9fba75282a709ac2a10be76df3ce015aefe3f30e4e026f89
SHA512

f3ffe241259a6f32b040ef60e0a5f7c126fbfaa12b3cb06c21272eadc92e7f78135cfd77572ab796fb250f4359cd134136be4e666abedc065525e707a440b3e8
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzgTAUAcfqg70sL:/7BlpQpARFbhNIg+sL

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  26065b3d721f765273fcf0076fdd7420N.exe
- Size
  
  47KB
- MD5
  
  26065b3d721f765273fcf0076fdd7420
- SHA1
  
  4248e1d117beb77a4c10bb3a3b09311d015775b9
- SHA256
  
  80d3c315c6e0ad5e9fba75282a709ac2a10be76df3ce015aefe3f30e4e026f89
- SHA512
  
  f3ffe241259a6f32b040ef60e0a5f7c126fbfaa12b3cb06c21272eadc92e7f78135cfd77572ab796fb250f4359cd134136be4e666abedc065525e707a440b3e8
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzgTAUAcfqg70sL:/7BlpQpARFbhNIg+sL
Score

9^/10

discovery ransomware
- Renames multiple (3271) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware