8c4f18e685e6d4d3f4b6882478e2eaf31857b5b162f735926ab1017d8cf36c36 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d3b21db4f2f95373aefb4f1ff2763e0N.exe
Size

51KB
Sample

240901-md3r8ayajl
MD5

6d3b21db4f2f95373aefb4f1ff2763e0
SHA1

a75aa70e5f45258ec992c736987f489bc5c6fb50
SHA256

8c4f18e685e6d4d3f4b6882478e2eaf31857b5b162f735926ab1017d8cf36c36
SHA512

c76f5f22df703f47a5d29fd14a806da77e882376d916ae3682d2f4cf4d4ca6db08b446997efc90fbafbc1f76cc1509e53a06c0163f981e61efb14a89008b7d4f
SSDEEP

768:W7Blp2sspARFbhVgNNHpQRNHpQR1TQbzjrY/+TQbzjrY/J:W7Z2sspApctpQRtpQRO

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6d3b21db4f2f95373aefb4f1ff2763e0N.exe
- Size
  
  51KB
- MD5
  
  6d3b21db4f2f95373aefb4f1ff2763e0
- SHA1
  
  a75aa70e5f45258ec992c736987f489bc5c6fb50
- SHA256
  
  8c4f18e685e6d4d3f4b6882478e2eaf31857b5b162f735926ab1017d8cf36c36
- SHA512
  
  c76f5f22df703f47a5d29fd14a806da77e882376d916ae3682d2f4cf4d4ca6db08b446997efc90fbafbc1f76cc1509e53a06c0163f981e61efb14a89008b7d4f
- SSDEEP
  
  768:W7Blp2sspARFbhVgNNHpQRNHpQR1TQbzjrY/+TQbzjrY/J:W7Z2sspApctpQRtpQRO
Score

9^/10

discovery ransomware
- Renames multiple (3155) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware