b9dd928b7873542b5cd06d6d5cba270aa83d15e9b37486ed576b3ff9e01b3f36 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18f0dc3e847855e9cbcc6b8c99e6c1a0N.exe
Size

35KB
Sample

240902-1rv67axhrl
MD5

18f0dc3e847855e9cbcc6b8c99e6c1a0
SHA1

a0b2eb63fe6a74398ce2301ccd5038272301f6f6
SHA256

b9dd928b7873542b5cd06d6d5cba270aa83d15e9b37486ed576b3ff9e01b3f36
SHA512

81b5b90ecf9ba12df5645015df6d44d845ce51af138276d5b58e0894f824cd561028964ca807d13650cd40d7c08ff88820a8410192bcc2de8d954ea510facaee
SSDEEP

384:GBt7Br5xjL9AgA71Fbhv7bhv3KueKudLl++KpkAk3:W7BlpppARFbhjbhPKueKudLw1i

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  18f0dc3e847855e9cbcc6b8c99e6c1a0N.exe
- Size
  
  35KB
- MD5
  
  18f0dc3e847855e9cbcc6b8c99e6c1a0
- SHA1
  
  a0b2eb63fe6a74398ce2301ccd5038272301f6f6
- SHA256
  
  b9dd928b7873542b5cd06d6d5cba270aa83d15e9b37486ed576b3ff9e01b3f36
- SHA512
  
  81b5b90ecf9ba12df5645015df6d44d845ce51af138276d5b58e0894f824cd561028964ca807d13650cd40d7c08ff88820a8410192bcc2de8d954ea510facaee
- SSDEEP
  
  384:GBt7Br5xjL9AgA71Fbhv7bhv3KueKudLl++KpkAk3:W7BlpppARFbhjbhPKueKudLw1i
Score

9^/10

discovery ransomware
- Renames multiple (425) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware