a56611e725df0106e43ba06eabb3d2fc4b8209c5c6369dddf007a999bed2b6fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d002c024ca9c3e3d74c591ace76fdaa0N.exe
Size

45KB
Sample

240902-z3ywsaxcnq
MD5

d002c024ca9c3e3d74c591ace76fdaa0
SHA1

76879f48e9362b4614660b8dca7b28e5901c6de8
SHA256

a56611e725df0106e43ba06eabb3d2fc4b8209c5c6369dddf007a999bed2b6fc
SHA512

4be474a157e94ce17d6d7bf5b5494df201014ea48f445dbd3e1f7c78ba59202308ea8d5b45f6f1947c5b27ad58d4fc60b80597be32a9d5381513c954a866be57
SSDEEP

384:yBs7Br5xjL8AgA71Fbhva4S04S0qZzH8C8sy4zH8C8st:/7BlpQpARFbhS101b

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d002c024ca9c3e3d74c591ace76fdaa0N.exe
- Size
  
  45KB
- MD5
  
  d002c024ca9c3e3d74c591ace76fdaa0
- SHA1
  
  76879f48e9362b4614660b8dca7b28e5901c6de8
- SHA256
  
  a56611e725df0106e43ba06eabb3d2fc4b8209c5c6369dddf007a999bed2b6fc
- SHA512
  
  4be474a157e94ce17d6d7bf5b5494df201014ea48f445dbd3e1f7c78ba59202308ea8d5b45f6f1947c5b27ad58d4fc60b80597be32a9d5381513c954a866be57
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhva4S04S0qZzH8C8sy4zH8C8st:/7BlpQpARFbhS101b
Score

9^/10

discovery ransomware
- Renames multiple (3334) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware