140d67885b12bed438d48db859fb2cca9bc0319d391f4a599e8ab97cfa26ccbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2bc4f6a66c0e74e459082fb487d56e0N.exe
Size

75KB
Sample

240901-jjz2qswanc
MD5

d2bc4f6a66c0e74e459082fb487d56e0
SHA1

c80f2ba3d2d97d29d950077843b4ee29ea68410b
SHA256

140d67885b12bed438d48db859fb2cca9bc0319d391f4a599e8ab97cfa26ccbd
SHA512

74fb75c530a881834dea20bd18626ff165dbf1d6e3f1a6c0781a147b0da860807f18a200b56cf9e5cd33a5859eee1dc278497a5408f86a72c33a38da2bcbb18c
SSDEEP

1536:/7ZQpApze+eJfFpsJOfFpsJ5DVSWu0SWugWL:9QWpze+eJfFpsJOfFpsJ5DVSWu0SWuN

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d2bc4f6a66c0e74e459082fb487d56e0N.exe
- Size
  
  75KB
- MD5
  
  d2bc4f6a66c0e74e459082fb487d56e0
- SHA1
  
  c80f2ba3d2d97d29d950077843b4ee29ea68410b
- SHA256
  
  140d67885b12bed438d48db859fb2cca9bc0319d391f4a599e8ab97cfa26ccbd
- SHA512
  
  74fb75c530a881834dea20bd18626ff165dbf1d6e3f1a6c0781a147b0da860807f18a200b56cf9e5cd33a5859eee1dc278497a5408f86a72c33a38da2bcbb18c
- SSDEEP
  
  1536:/7ZQpApze+eJfFpsJOfFpsJ5DVSWu0SWugWL:9QWpze+eJfFpsJOfFpsJ5DVSWu0SWuN
Score

9^/10

discovery ransomware
- Renames multiple (456) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware