590f1bd2e366ce697197c63f8b65a47547c4dd1f62e8caeec4952cf301da1ebd | Triage

Sharing

General

Target

236f7aded58a1da981561c6b2f15a9c0N.exe
Size

53KB
Sample

240902-gvj4jstemn
MD5

236f7aded58a1da981561c6b2f15a9c0
SHA1

731b70be43810b61e72550ee888e5c9e04501422
SHA256

590f1bd2e366ce697197c63f8b65a47547c4dd1f62e8caeec4952cf301da1ebd
SHA512

d841e4baa7cf1a4cd46a4eedaa26af2cd4807aa8f09e22e661f5126794cd6ebe90d3ec9fd803bae44c292a5bd2ecd0d8a4a0631dccc34298f315588c41a6c7f5
SSDEEP

768:W7BlpppARFbhbt7Y7wTCg0hcM0hcnj8lB:W7ZppApN0hcM0hcO

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  236f7aded58a1da981561c6b2f15a9c0N.exe
- Size
  
  53KB
- MD5
  
  236f7aded58a1da981561c6b2f15a9c0
- SHA1
  
  731b70be43810b61e72550ee888e5c9e04501422
- SHA256
  
  590f1bd2e366ce697197c63f8b65a47547c4dd1f62e8caeec4952cf301da1ebd
- SHA512
  
  d841e4baa7cf1a4cd46a4eedaa26af2cd4807aa8f09e22e661f5126794cd6ebe90d3ec9fd803bae44c292a5bd2ecd0d8a4a0631dccc34298f315588c41a6c7f5
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCg0hcM0hcnj8lB:W7ZppApN0hcM0hcO
Score

9^/10

discovery ransomware
- Renames multiple (3324) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware