a7b1aa4a5c8ed7dcf85af88b05cc304057c83fbec28a2ecaba1dbae1a1583b99 | Triage

Sharing

General

Target

6aa23cba7b3f389cc1d6e0b95f01fde0N.exe
Size

60KB
Sample

240901-pqel9s1djf
MD5

6aa23cba7b3f389cc1d6e0b95f01fde0
SHA1

0a78a7e86fe1766691b1004f76bed4db87d19966
SHA256

a7b1aa4a5c8ed7dcf85af88b05cc304057c83fbec28a2ecaba1dbae1a1583b99
SHA512

385319363e883826670d9e304bc2e310bd4aa71d58ec498ca4f8c5edad6874b6b52a2a53b565bdde43208974113aaeecd41d2de189fe6b7a0d0e99a013d5c1e5
SSDEEP

768:W7Blp+pARFbhBgnKL+8t8NZgo2in9u9rMBBB4F/MF/rWU:W7Z+pAp2nKLc2in9u9rMBBB62TWU

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6aa23cba7b3f389cc1d6e0b95f01fde0N.exe
- Size
  
  60KB
- MD5
  
  6aa23cba7b3f389cc1d6e0b95f01fde0
- SHA1
  
  0a78a7e86fe1766691b1004f76bed4db87d19966
- SHA256
  
  a7b1aa4a5c8ed7dcf85af88b05cc304057c83fbec28a2ecaba1dbae1a1583b99
- SHA512
  
  385319363e883826670d9e304bc2e310bd4aa71d58ec498ca4f8c5edad6874b6b52a2a53b565bdde43208974113aaeecd41d2de189fe6b7a0d0e99a013d5c1e5
- SSDEEP
  
  768:W7Blp+pARFbhBgnKL+8t8NZgo2in9u9rMBBB4F/MF/rWU:W7Z+pAp2nKLc2in9u9rMBBB62TWU
Score

9^/10

discovery ransomware
- Renames multiple (3218) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware