96174f7fc5959a824965a8cb8c11b3f6577bcaef8501a9df5f20e031259a6ad8 | Triage

Sharing

General

Target

1f6463ce49cbfcd2270a6fb7ca72af80N.exe
Size

50KB
Sample

240902-dbyaaazclj
MD5

1f6463ce49cbfcd2270a6fb7ca72af80
SHA1

03aaeb0a5d85c56d02813572a4018376e7e44257
SHA256

96174f7fc5959a824965a8cb8c11b3f6577bcaef8501a9df5f20e031259a6ad8
SHA512

7cb402dd4f4cd975c68a73660cc6756d5cadc346c31f663af603d8b1a671ed8213fa4170224b8fdbfde06b76161c623ce987cbb563d9e8578b357c6d7245a4fd
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3h+fZmrs71I8fZmrs71IUoV0K0G06:W7Blp9pARFbhCRYstRYsyV0Hj6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1f6463ce49cbfcd2270a6fb7ca72af80N.exe
- Size
  
  50KB
- MD5
  
  1f6463ce49cbfcd2270a6fb7ca72af80
- SHA1
  
  03aaeb0a5d85c56d02813572a4018376e7e44257
- SHA256
  
  96174f7fc5959a824965a8cb8c11b3f6577bcaef8501a9df5f20e031259a6ad8
- SHA512
  
  7cb402dd4f4cd975c68a73660cc6756d5cadc346c31f663af603d8b1a671ed8213fa4170224b8fdbfde06b76161c623ce987cbb563d9e8578b357c6d7245a4fd
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3h+fZmrs71I8fZmrs71IUoV0K0G06:W7Blp9pARFbhCRYstRYsyV0Hj6
Score

9^/10

discovery ransomware
- Renames multiple (2854) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware