68cb1a88cb4462c88f276e37d498a12a8cf93953e7b768fbe70c2e5d2ba80565 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

be8156e359032a36705fb5dcfa1108d0N.exe
Size

58KB
Sample

240829-kxgyravgmr
MD5

be8156e359032a36705fb5dcfa1108d0
SHA1

58468d285e87eb87f5dc7002ea52e7c1c26785ec
SHA256

68cb1a88cb4462c88f276e37d498a12a8cf93953e7b768fbe70c2e5d2ba80565
SHA512

a4aa160cbb849828e22b4b0c792c7e5e930e324da7150bc96f73d4deb1e09aabe21a53d6f5d0d280562314f1ebbf82525b9a6972329058799257cd11952bf84e
SSDEEP

768:W7Blp+pARFbhBgnKLMWK9WKD2N2QpQxYbMxYbyj9:W7Z+pAp2nKLRKIKqoab/byj9

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  be8156e359032a36705fb5dcfa1108d0N.exe
- Size
  
  58KB
- MD5
  
  be8156e359032a36705fb5dcfa1108d0
- SHA1
  
  58468d285e87eb87f5dc7002ea52e7c1c26785ec
- SHA256
  
  68cb1a88cb4462c88f276e37d498a12a8cf93953e7b768fbe70c2e5d2ba80565
- SHA512
  
  a4aa160cbb849828e22b4b0c792c7e5e930e324da7150bc96f73d4deb1e09aabe21a53d6f5d0d280562314f1ebbf82525b9a6972329058799257cd11952bf84e
- SSDEEP
  
  768:W7Blp+pARFbhBgnKLMWK9WKD2N2QpQxYbMxYbyj9:W7Z+pAp2nKLRKIKqoab/byj9
Score

9^/10

discovery ransomware
- Renames multiple (3161) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware