4f82d90392a36873c80424a48be918e621de1f1d24584a038e715a64e1ec3500 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

847dc35ab78c23e2c197446d1fcbc780N.exe
Size

87KB
Sample

240902-r4tz8asenl
MD5

847dc35ab78c23e2c197446d1fcbc780
SHA1

dc4b3f056b2e23b5d1d819feab0e8f01b6e0c6a5
SHA256

4f82d90392a36873c80424a48be918e621de1f1d24584a038e715a64e1ec3500
SHA512

80c88a607d1a2603c419728a650521ef470a2566c207983392d90e746139020517839efc8e683c0071921c85ee798f478b79f45c878029560e87c0fecceceb45
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdTJilJiqTpTr5y:6e7WpMaxeb0CYJ97lEYNR73e+enxM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  847dc35ab78c23e2c197446d1fcbc780N.exe
- Size
  
  87KB
- MD5
  
  847dc35ab78c23e2c197446d1fcbc780
- SHA1
  
  dc4b3f056b2e23b5d1d819feab0e8f01b6e0c6a5
- SHA256
  
  4f82d90392a36873c80424a48be918e621de1f1d24584a038e715a64e1ec3500
- SHA512
  
  80c88a607d1a2603c419728a650521ef470a2566c207983392d90e746139020517839efc8e683c0071921c85ee798f478b79f45c878029560e87c0fecceceb45
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdTJilJiqTpTr5y:6e7WpMaxeb0CYJ97lEYNR73e+enxM
Score

9^/10

discovery ransomware
- Renames multiple (2935) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware