0a1c2d24a1290ac27ae11d6fba89727dfacf2a456b48c5612f4fc545a851b894 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

560c34070501d9ddd8e95f96be9493c0N.exe
Size

78KB
Sample

240903-x8638swdjg
MD5

560c34070501d9ddd8e95f96be9493c0
SHA1

b15cc4f39431d79669e2ee48f1f35b11c252b876
SHA256

0a1c2d24a1290ac27ae11d6fba89727dfacf2a456b48c5612f4fc545a851b894
SHA512

bf08e0cbcf83bb1fdfe51bd54b1427c3e42dacd0711e48a59711207bba265e164f7d2b0103899029e9fbb1c456beda1cc8721a40d5a4ca563e23db11224230d2
SSDEEP

1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZS02C:6DWp7Ws2C

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  560c34070501d9ddd8e95f96be9493c0N.exe
- Size
  
  78KB
- MD5
  
  560c34070501d9ddd8e95f96be9493c0
- SHA1
  
  b15cc4f39431d79669e2ee48f1f35b11c252b876
- SHA256
  
  0a1c2d24a1290ac27ae11d6fba89727dfacf2a456b48c5612f4fc545a851b894
- SHA512
  
  bf08e0cbcf83bb1fdfe51bd54b1427c3e42dacd0711e48a59711207bba265e164f7d2b0103899029e9fbb1c456beda1cc8721a40d5a4ca563e23db11224230d2
- SSDEEP
  
  1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZS02C:6DWp7Ws2C
Score

9^/10

discovery ransomware
- Renames multiple (3137) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware