1fa45b938a53836740f4f46e911d1e59fea440c448df83d5ef8f3b2de2196f4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d3c7838a53c56edfafb67119aaa7ca0N.exe
Size

75KB
Sample

240829-jgr84szeld
MD5

2d3c7838a53c56edfafb67119aaa7ca0
SHA1

65e0a8b1909c7e92bf6680cd8b14e44a1f5ddaf2
SHA256

1fa45b938a53836740f4f46e911d1e59fea440c448df83d5ef8f3b2de2196f4f
SHA512

96a6786c17d1591b492610e64fb705c25d41b81c30b83c707c8fda319446b36ed584133cc434ac2fb8a6e5c0a380f7d4f6f73fb7d1982d4d6899601b8fb2c7b2
SSDEEP

1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSF7u:6DWp7WA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2d3c7838a53c56edfafb67119aaa7ca0N.exe
- Size
  
  75KB
- MD5
  
  2d3c7838a53c56edfafb67119aaa7ca0
- SHA1
  
  65e0a8b1909c7e92bf6680cd8b14e44a1f5ddaf2
- SHA256
  
  1fa45b938a53836740f4f46e911d1e59fea440c448df83d5ef8f3b2de2196f4f
- SHA512
  
  96a6786c17d1591b492610e64fb705c25d41b81c30b83c707c8fda319446b36ed584133cc434ac2fb8a6e5c0a380f7d4f6f73fb7d1982d4d6899601b8fb2c7b2
- SSDEEP
  
  1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSF7u:6DWp7WA
Score

9^/10

discovery ransomware
- Renames multiple (3111) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware