6667a72229d73083afe4bea379d692a1513c7b15eeea4ac65d7193ac52a3a5b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9de4e5f8e66c9101815fe3eae2057ea0N.exe
Size

44KB
Sample

240901-b7cbksxhjp
MD5

9de4e5f8e66c9101815fe3eae2057ea0
SHA1

9d45774285033cc4c1e80063890df1b0a72b9da6
SHA256

6667a72229d73083afe4bea379d692a1513c7b15eeea4ac65d7193ac52a3a5b6
SHA512

f7f4756724587110183417f728f987c40211512c95ca28bf0413c3384f7e455ac07dd71d508b12143b9abf02cd93b9708632ac58e46182898ecf067c799fa52a
SSDEEP

384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+8t8YwTZ18VwStBfkaIntBfkaIY:W7Blp+pARFbhBgnKL+8t8NZ+Bfk/Bfkm

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9de4e5f8e66c9101815fe3eae2057ea0N.exe
- Size
  
  44KB
- MD5
  
  9de4e5f8e66c9101815fe3eae2057ea0
- SHA1
  
  9d45774285033cc4c1e80063890df1b0a72b9da6
- SHA256
  
  6667a72229d73083afe4bea379d692a1513c7b15eeea4ac65d7193ac52a3a5b6
- SHA512
  
  f7f4756724587110183417f728f987c40211512c95ca28bf0413c3384f7e455ac07dd71d508b12143b9abf02cd93b9708632ac58e46182898ecf067c799fa52a
- SSDEEP
  
  384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fL+8t8YwTZ18VwStBfkaIntBfkaIY:W7Blp+pARFbhBgnKL+8t8NZ+Bfk/Bfkm
Score

9^/10

discovery ransomware
- Renames multiple (3156) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware