94c04ce32c5762c40501e3daafb6df273b39f17d8a5d8291cc4b1f838b526e5c | Triage

Sharing

General

Target

ac08c55e898dde2a34bb45b36bd7e580N.exe
Size

46KB
Sample

240901-rsgwhstekc
MD5

ac08c55e898dde2a34bb45b36bd7e580
SHA1

9741dd81232404cc3f200b72c7c6d2802a947a92
SHA256

94c04ce32c5762c40501e3daafb6df273b39f17d8a5d8291cc4b1f838b526e5c
SHA512

d07693f0ef70accaa1443a489f33d5b9e7f858295d0bee59c940ab61036f4c20abea970d5fd7ca163622b89dd3508a8add6da9c973833e29573e7e50dfc22f5e
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7TFJF5w5:W7ZhA7pApw03vR03vnfbw5

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ac08c55e898dde2a34bb45b36bd7e580N.exe
- Size
  
  46KB
- MD5
  
  ac08c55e898dde2a34bb45b36bd7e580
- SHA1
  
  9741dd81232404cc3f200b72c7c6d2802a947a92
- SHA256
  
  94c04ce32c5762c40501e3daafb6df273b39f17d8a5d8291cc4b1f838b526e5c
- SHA512
  
  d07693f0ef70accaa1443a489f33d5b9e7f858295d0bee59c940ab61036f4c20abea970d5fd7ca163622b89dd3508a8add6da9c973833e29573e7e50dfc22f5e
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7TFJF5w5:W7ZhA7pApw03vR03vnfbw5
Score

9^/10

discovery ransomware
- Renames multiple (3274) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware