55a3524d9f25070917bd793aaaf76cb3d9acffcd244cc32695a5f141c7fdd40c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d95819ee02e2a422321dad5eb518ad60N.exe
Size

55KB
Sample

240903-gvtb8azgph
MD5

d95819ee02e2a422321dad5eb518ad60
SHA1

c5555e8fcaea4e59bbc032d874e110117682224e
SHA256

55a3524d9f25070917bd793aaaf76cb3d9acffcd244cc32695a5f141c7fdd40c
SHA512

c5ca0fcfeedff756232dfe0f018f94d023e28b2f9c2235e383082fd78b37ba53effb42cd9ffd4e1a9f70a0f373630895e53f5f1eec727e8e685ebc5c6e3bd280
SSDEEP

768:W7BlpppARFbhbt7Y7wTCg0hcM0hcnj8lz:W7ZppApN0hcM0hc4

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d95819ee02e2a422321dad5eb518ad60N.exe
- Size
  
  55KB
- MD5
  
  d95819ee02e2a422321dad5eb518ad60
- SHA1
  
  c5555e8fcaea4e59bbc032d874e110117682224e
- SHA256
  
  55a3524d9f25070917bd793aaaf76cb3d9acffcd244cc32695a5f141c7fdd40c
- SHA512
  
  c5ca0fcfeedff756232dfe0f018f94d023e28b2f9c2235e383082fd78b37ba53effb42cd9ffd4e1a9f70a0f373630895e53f5f1eec727e8e685ebc5c6e3bd280
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCg0hcM0hcnj8lz:W7ZppApN0hcM0hc4
Score

9^/10

discovery ransomware
- Renames multiple (2849) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware