d9bfc44110745eb71a1275a27a2b3b4d5cc36b1f445813fd6546a01ac4ccb6a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4bd98d3e9c992ae5dcd6205c2f29a030N.exe
Size

148KB
Sample

240901-fnx66asele
MD5

4bd98d3e9c992ae5dcd6205c2f29a030
SHA1

637fd7050e59100d10bac329fe08a59cfa27f88b
SHA256

d9bfc44110745eb71a1275a27a2b3b4d5cc36b1f445813fd6546a01ac4ccb6a1
SHA512

a4225a21f6e2e6167987729caebeeeee86a80e8c30df87fffff995711ec2c6244375f00e7aadd56c9ecaec3d7363270775d078ffd9c65f67666360c84392d977
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYx:RqKvb0CYJ973e+eKZOf7fWqKvb0CYx

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4bd98d3e9c992ae5dcd6205c2f29a030N.exe
- Size
  
  148KB
- MD5
  
  4bd98d3e9c992ae5dcd6205c2f29a030
- SHA1
  
  637fd7050e59100d10bac329fe08a59cfa27f88b
- SHA256
  
  d9bfc44110745eb71a1275a27a2b3b4d5cc36b1f445813fd6546a01ac4ccb6a1
- SHA512
  
  a4225a21f6e2e6167987729caebeeeee86a80e8c30df87fffff995711ec2c6244375f00e7aadd56c9ecaec3d7363270775d078ffd9c65f67666360c84392d977
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYx:RqKvb0CYJ973e+eKZOf7fWqKvb0CYx
Score

9^/10

discovery ransomware
- Renames multiple (2813) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware