544e3ecddcd1f54e1dcee8d4595e99db87b60875962d2b0dc5e29c62ef756017 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a98fbc61f4f00eade195436c5a2c0c0N.exe
Size

53KB
Sample

240902-a9w84awhqr
MD5

4a98fbc61f4f00eade195436c5a2c0c0
SHA1

fb5a70dabe648884ec58f49a546e35b9a8d365b7
SHA256

544e3ecddcd1f54e1dcee8d4595e99db87b60875962d2b0dc5e29c62ef756017
SHA512

593fb10cf78dc31678d4ef6f0fd06d329cadb503919760a43e5bd8fdf489fe45fad406c17c89f6c8bdb1ad1860ce4489b64f216da42123f41231a09e1956c594
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBN2TqXSg4vm3lXSg4vm3Iv94Pz6YJPz6Ye:W7BlpppARFbhtKL6YJL6Ye

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4a98fbc61f4f00eade195436c5a2c0c0N.exe
- Size
  
  53KB
- MD5
  
  4a98fbc61f4f00eade195436c5a2c0c0
- SHA1
  
  fb5a70dabe648884ec58f49a546e35b9a8d365b7
- SHA256
  
  544e3ecddcd1f54e1dcee8d4595e99db87b60875962d2b0dc5e29c62ef756017
- SHA512
  
  593fb10cf78dc31678d4ef6f0fd06d329cadb503919760a43e5bd8fdf489fe45fad406c17c89f6c8bdb1ad1860ce4489b64f216da42123f41231a09e1956c594
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBN2TqXSg4vm3lXSg4vm3Iv94Pz6YJPz6Ye:W7BlpppARFbhtKL6YJL6Ye
Score

9^/10

discovery ransomware
- Renames multiple (3298) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware