dfa222abec4d5e23f463924a890db18d8380cfa10def3dbf28931e922dcdd95a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1eb017c8634abef8c624f6191d7fee0N.exe
Size

39KB
Sample

240903-na2w7avdqq
MD5

f1eb017c8634abef8c624f6191d7fee0
SHA1

daf8c53d76fa43c9e3fb057f956fcf05e5af4701
SHA256

dfa222abec4d5e23f463924a890db18d8380cfa10def3dbf28931e922dcdd95a
SHA512

5f70028fc3c83bd620664ade4e52210388419f801f2c9b8d437d624bbbb2b5dcad472d2e4fb2dfe45cdca3d24a95410c100dc860405d2f7d048c4bf47b988f22
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltIIRIW68:W7ZhA7pApM21LOA1LOl6Az68

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f1eb017c8634abef8c624f6191d7fee0N.exe
- Size
  
  39KB
- MD5
  
  f1eb017c8634abef8c624f6191d7fee0
- SHA1
  
  daf8c53d76fa43c9e3fb057f956fcf05e5af4701
- SHA256
  
  dfa222abec4d5e23f463924a890db18d8380cfa10def3dbf28931e922dcdd95a
- SHA512
  
  5f70028fc3c83bd620664ade4e52210388419f801f2c9b8d437d624bbbb2b5dcad472d2e4fb2dfe45cdca3d24a95410c100dc860405d2f7d048c4bf47b988f22
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltIIRIW68:W7ZhA7pApM21LOA1LOl6Az68
Score

9^/10

discovery ransomware
- Renames multiple (3306) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware