711e7576651420c5fafc983a1e875eb4c4a616cb831b6208389b50801e47d886 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5db67a510fe4e91c1c8c205c673c2160N.exe
Size

89KB
Sample

240902-bfkhwaxbnm
MD5

5db67a510fe4e91c1c8c205c673c2160
SHA1

607f4ad0dcd5c8c0e59a06a862bf9fe0831656bf
SHA256

711e7576651420c5fafc983a1e875eb4c4a616cb831b6208389b50801e47d886
SHA512

496b1d45169d38b659673f25ba303726d176efbb42d9b985050ce71ac152284fc609ff9626f4de1910289c4275b1669477cb7fbccd32a1216e6a5782a676761b
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex2j8V:69WpQE0zUzXd

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5db67a510fe4e91c1c8c205c673c2160N.exe
- Size
  
  89KB
- MD5
  
  5db67a510fe4e91c1c8c205c673c2160
- SHA1
  
  607f4ad0dcd5c8c0e59a06a862bf9fe0831656bf
- SHA256
  
  711e7576651420c5fafc983a1e875eb4c4a616cb831b6208389b50801e47d886
- SHA512
  
  496b1d45169d38b659673f25ba303726d176efbb42d9b985050ce71ac152284fc609ff9626f4de1910289c4275b1669477cb7fbccd32a1216e6a5782a676761b
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex2j8V:69WpQE0zUzXd
Score

9^/10

discovery ransomware
- Renames multiple (2819) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware