8d946a5896de79041fbc3714bf4011a02c40b480da9f5ba31cb849e31bcfea4e | Triage

Sharing

General

Target

c6cf5996b18290b16a9e46bbbd9e9e90N.exe
Size

43KB
Sample

240901-m61hkazajg
MD5

c6cf5996b18290b16a9e46bbbd9e9e90
SHA1

830655cb59afb7c46bcd3c38fd08af041b94e30b
SHA256

8d946a5896de79041fbc3714bf4011a02c40b480da9f5ba31cb849e31bcfea4e
SHA512

f94aa70c7ff3ae48d2658c927d427638944e012e4e7c6472bd2d17e2ada8a1c643369f500e2c28c9b446f890964751c691fd2d9de37a72f2f0385ec2b079def0
SSDEEP

384:GBt7Br5xjL9A7AgA71Fbhvnqj7jU7ubTAgpbuvx10AaIdKB7ubTAgpbuvx10AaIj:W7BlphA7pARFbhL801VvM801Vvv7cYR

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c6cf5996b18290b16a9e46bbbd9e9e90N.exe
- Size
  
  43KB
- MD5
  
  c6cf5996b18290b16a9e46bbbd9e9e90
- SHA1
  
  830655cb59afb7c46bcd3c38fd08af041b94e30b
- SHA256
  
  8d946a5896de79041fbc3714bf4011a02c40b480da9f5ba31cb849e31bcfea4e
- SHA512
  
  f94aa70c7ff3ae48d2658c927d427638944e012e4e7c6472bd2d17e2ada8a1c643369f500e2c28c9b446f890964751c691fd2d9de37a72f2f0385ec2b079def0
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71Fbhvnqj7jU7ubTAgpbuvx10AaIdKB7ubTAgpbuvx10AaIj:W7BlphA7pARFbhL801VvM801Vvv7cYR
Score

9^/10

discovery ransomware
- Renames multiple (3212) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware