3ff1522916b1f75a51adab622b7bb7a10ceceb5de02852dd18b40d2f4c163f98 | Triage

Sharing

General

Target

41d8599c3f1698e340787fa0185922f0N.exe
Size

41KB
Sample

240831-3wnzsasglf
MD5

41d8599c3f1698e340787fa0185922f0
SHA1

9b3bdec7f16797fd13c936632851781e645a8bda
SHA256

3ff1522916b1f75a51adab622b7bb7a10ceceb5de02852dd18b40d2f4c163f98
SHA512

02b567717aba706edb3b01ec956529bcc8d7fdffe81adf71d053a2ccd2572d95480ad7e21a3b235cc3a6e4ec4748c2b70979a560cf5ca76685f1e03cfba822fa
SSDEEP

768:W7Blp+pARFbhBgnKL+8t8NZEPAPZmQP9Pb:W7Z+pAp2nKL74Rm0

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41d8599c3f1698e340787fa0185922f0N.exe
- Size
  
  41KB
- MD5
  
  41d8599c3f1698e340787fa0185922f0
- SHA1
  
  9b3bdec7f16797fd13c936632851781e645a8bda
- SHA256
  
  3ff1522916b1f75a51adab622b7bb7a10ceceb5de02852dd18b40d2f4c163f98
- SHA512
  
  02b567717aba706edb3b01ec956529bcc8d7fdffe81adf71d053a2ccd2572d95480ad7e21a3b235cc3a6e4ec4748c2b70979a560cf5ca76685f1e03cfba822fa
- SSDEEP
  
  768:W7Blp+pARFbhBgnKL+8t8NZEPAPZmQP9Pb:W7Z+pAp2nKL74Rm0
Score

9^/10

discovery ransomware
- Renames multiple (3087) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware