d8a4b6f3ca2eee7ffe9f29db3eec4ac8178babf739f1f990c1baa1664f31fb3e | Triage

Sharing

General

Target

830bbc11911386a65f969d88d7c2c290N.exe
Size

48KB
Sample

240829-p6y1vaseqc
MD5

830bbc11911386a65f969d88d7c2c290
SHA1

3550a82e69c237d1a845085684bf0c00814eb37c
SHA256

d8a4b6f3ca2eee7ffe9f29db3eec4ac8178babf739f1f990c1baa1664f31fb3e
SHA512

81db767c820932dd42ca400845fc8509f6707241d39c6d2d678d76fe1cb0941bf123d59573a3de55b556adb8f6ce64702726635677f039a31626113aaa811b57
SSDEEP

1536:W7ZppApBULcfpHLcfpyDUdyGdynmpmN2o:6pWpBwchcwDsAN2o

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  830bbc11911386a65f969d88d7c2c290N.exe
- Size
  
  48KB
- MD5
  
  830bbc11911386a65f969d88d7c2c290
- SHA1
  
  3550a82e69c237d1a845085684bf0c00814eb37c
- SHA256
  
  d8a4b6f3ca2eee7ffe9f29db3eec4ac8178babf739f1f990c1baa1664f31fb3e
- SHA512
  
  81db767c820932dd42ca400845fc8509f6707241d39c6d2d678d76fe1cb0941bf123d59573a3de55b556adb8f6ce64702726635677f039a31626113aaa811b57
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyDUdyGdynmpmN2o:6pWpBwchcwDsAN2o
Score

9^/10

discovery ransomware
- Renames multiple (3177) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware