4ab318d8af667020164b8656ea6c8808bc8e7f176193a10ede6dfd21b0857d4f | Triage

Sharing

General

Target

83db1095afd3f7dae51b2f7db317dc20N.exe
Size

46KB
Sample

240902-z1y4rsxckr
MD5

83db1095afd3f7dae51b2f7db317dc20
SHA1

5d217994b95c4c765cd2e5e632364a1ccd2986c6
SHA256

4ab318d8af667020164b8656ea6c8808bc8e7f176193a10ede6dfd21b0857d4f
SHA512

96539f1df3f9eb585cdc340e4b53c49851d136b2d4b66e322f22c88e52b848942f12bc713fe09d7641496c337f32ab51a0dc901b1f0e8cc6157574bad0608aa8
SSDEEP

384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fLMzyKbNzzyKbNWkq3DLXakq3DLXGbg142NW:W7Blp+pARFbhBgnKLMWK9WKD2N2w

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  83db1095afd3f7dae51b2f7db317dc20N.exe
- Size
  
  46KB
- MD5
  
  83db1095afd3f7dae51b2f7db317dc20
- SHA1
  
  5d217994b95c4c765cd2e5e632364a1ccd2986c6
- SHA256
  
  4ab318d8af667020164b8656ea6c8808bc8e7f176193a10ede6dfd21b0857d4f
- SHA512
  
  96539f1df3f9eb585cdc340e4b53c49851d136b2d4b66e322f22c88e52b848942f12bc713fe09d7641496c337f32ab51a0dc901b1f0e8cc6157574bad0608aa8
- SSDEEP
  
  384:GBt7Br5xjLdbAAgA71FbhvU8g0U0fLMzyKbNzzyKbNWkq3DLXakq3DLXGbg142NW:W7Blp+pARFbhBgnKLMWK9WKD2N2w
Score

9^/10

discovery ransomware
- Renames multiple (3339) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware