44593a607c713f108bfdc8dc6df68a56aefe88bdbbe7cc314b537a6795409f30 | Triage

Sharing

General

Target

3b43e989725f33f482bda18311486550N.exe
Size

54KB
Sample

240903-xc5kjatcrl
MD5

3b43e989725f33f482bda18311486550
SHA1

fe832507f74414d4e495693dcc2e7e246785aaec
SHA256

44593a607c713f108bfdc8dc6df68a56aefe88bdbbe7cc314b537a6795409f30
SHA512

bd5307372f5cacd6157df45c2f0dea8cc840673a607145f6b51284dba7dfaa1f0d853fd669c7e1c16ec30aef0f9756668002fd963d09cc41c25f1722c0dc3ac7
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7enLgk:W7ZhA7pApw03vR03vAgk

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3b43e989725f33f482bda18311486550N.exe
- Size
  
  54KB
- MD5
  
  3b43e989725f33f482bda18311486550
- SHA1
  
  fe832507f74414d4e495693dcc2e7e246785aaec
- SHA256
  
  44593a607c713f108bfdc8dc6df68a56aefe88bdbbe7cc314b537a6795409f30
- SHA512
  
  bd5307372f5cacd6157df45c2f0dea8cc840673a607145f6b51284dba7dfaa1f0d853fd669c7e1c16ec30aef0f9756668002fd963d09cc41c25f1722c0dc3ac7
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7enLgk:W7ZhA7pApw03vR03vAgk
Score

9^/10

discovery ransomware
- Renames multiple (335) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware