31b7bd1ddb63dc340083afe612ce4320b4296403e79784f1ae5c5ba6ad1cd07b | Triage

Sharing

General

Target

41655a1e9954303ec5afe9452dced220N.exe
Size

51KB
Sample

240901-bw9spsxbrp
MD5

41655a1e9954303ec5afe9452dced220
SHA1

9a068c2f584ac7886f81540676147e9d2eaca19b
SHA256

31b7bd1ddb63dc340083afe612ce4320b4296403e79784f1ae5c5ba6ad1cd07b
SHA512

5ca7f92b8c546fcaad68c97959b2c2f1bf0552f520a10983fac1a614f62d014638c8ef1daee4db4c81cd6bca8d00e6978876bb19571d9f572eeb5b259995aad4
SSDEEP

768:p7BlphA7dASbSLJJBZBZaOAOIB3jM2jMO/vY6q/Gum/Guj:p7ZhA7dAxJJB7LD2I2IGYM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41655a1e9954303ec5afe9452dced220N.exe
- Size
  
  51KB
- MD5
  
  41655a1e9954303ec5afe9452dced220
- SHA1
  
  9a068c2f584ac7886f81540676147e9d2eaca19b
- SHA256
  
  31b7bd1ddb63dc340083afe612ce4320b4296403e79784f1ae5c5ba6ad1cd07b
- SHA512
  
  5ca7f92b8c546fcaad68c97959b2c2f1bf0552f520a10983fac1a614f62d014638c8ef1daee4db4c81cd6bca8d00e6978876bb19571d9f572eeb5b259995aad4
- SSDEEP
  
  768:p7BlphA7dASbSLJJBZBZaOAOIB3jM2jMO/vY6q/Gum/Guj:p7ZhA7dAxJJB7LD2I2IGYM
Score

9^/10

discovery ransomware
- Renames multiple (2841) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware