4399160427e32acc506cbd534d0947c56711555540ee32bae0616007474e5d5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7e46bcc0091a73aa6db3128bb5a4230N.exe
Size

47KB
Sample

240902-gplp7atdln
MD5

d7e46bcc0091a73aa6db3128bb5a4230
SHA1

1d0bbd5c5ddfb0165e27f52aa12f50b11426cea2
SHA256

4399160427e32acc506cbd534d0947c56711555540ee32bae0616007474e5d5d
SHA512

4668b84c1af3dc46cf61f36e83f941e1307ad78586185041d380971b1d5506b965495cc3594f821eb585ab32202d431f917adba2f969d1b79f84001bc11402c9
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IjftfX:/7BlpQpARFbhNIiJwsJwwnZR

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d7e46bcc0091a73aa6db3128bb5a4230N.exe
- Size
  
  47KB
- MD5
  
  d7e46bcc0091a73aa6db3128bb5a4230
- SHA1
  
  1d0bbd5c5ddfb0165e27f52aa12f50b11426cea2
- SHA256
  
  4399160427e32acc506cbd534d0947c56711555540ee32bae0616007474e5d5d
- SHA512
  
  4668b84c1af3dc46cf61f36e83f941e1307ad78586185041d380971b1d5506b965495cc3594f821eb585ab32202d431f917adba2f969d1b79f84001bc11402c9
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IjftfX:/7BlpQpARFbhNIiJwsJwwnZR
Score

9^/10

discovery ransomware
- Renames multiple (3407) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware