f13e0423f923fef4b39d4dbc4fae5a69eb8adb1bb9fca95962ad6cb63fc8119b | Triage

Sharing

General

Target

d2e563b41ffaa1b58153e212a0205930N.exe
Size

146KB
Sample

240902-p7gg7azhrr
MD5

d2e563b41ffaa1b58153e212a0205930
SHA1

ca0627aad2a26d91027880a3666bbed9934d4b6e
SHA256

f13e0423f923fef4b39d4dbc4fae5a69eb8adb1bb9fca95962ad6cb63fc8119b
SHA512

d75da89b46e311b4420b528a488eceb28c537fedd59fd8183b072378a66936c196d9b9c31774e616786b72aa857bb4f4b47037debab25adf198cd37319172c48
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CY3:RqKvb0CYJ973e+eKZOf7fWqKvb0CY3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d2e563b41ffaa1b58153e212a0205930N.exe
- Size
  
  146KB
- MD5
  
  d2e563b41ffaa1b58153e212a0205930
- SHA1
  
  ca0627aad2a26d91027880a3666bbed9934d4b6e
- SHA256
  
  f13e0423f923fef4b39d4dbc4fae5a69eb8adb1bb9fca95962ad6cb63fc8119b
- SHA512
  
  d75da89b46e311b4420b528a488eceb28c537fedd59fd8183b072378a66936c196d9b9c31774e616786b72aa857bb4f4b47037debab25adf198cd37319172c48
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CY3:RqKvb0CYJ973e+eKZOf7fWqKvb0CY3
Score

9^/10

discovery ransomware
- Renames multiple (2841) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware