fe814930ac980b4fa65898cce524750ae6d64ff90d5b4ec76c73dfe1a591ffee | Triage

Sharing

General

Target

0994235d7507dcd126758a4d436b25e0N.exe
Size

38KB
Sample

240904-1nkahsyajb
MD5

0994235d7507dcd126758a4d436b25e0
SHA1

d4a83334d71a877edf2dda8e47a6a5e40452a90f
SHA256

fe814930ac980b4fa65898cce524750ae6d64ff90d5b4ec76c73dfe1a591ffee
SHA512

30b089ca2a1a68b97d79bee2bbbd4c8bc1e47bbe03573c9b4be8ff8a47399812b8338df431acaf8f147670cd78ccedcaa02d2ceba4556db95fe6e09b361c1c98
SSDEEP

384:GBt7Br5xjL9AgA71Fbhv7bhv3KueKudLl++KVVC5KHGQog:W7BlpppARFbhjbhPKueKudLw1LC5XQog

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0994235d7507dcd126758a4d436b25e0N.exe
- Size
  
  38KB
- MD5
  
  0994235d7507dcd126758a4d436b25e0
- SHA1
  
  d4a83334d71a877edf2dda8e47a6a5e40452a90f
- SHA256
  
  fe814930ac980b4fa65898cce524750ae6d64ff90d5b4ec76c73dfe1a591ffee
- SHA512
  
  30b089ca2a1a68b97d79bee2bbbd4c8bc1e47bbe03573c9b4be8ff8a47399812b8338df431acaf8f147670cd78ccedcaa02d2ceba4556db95fe6e09b361c1c98
- SSDEEP
  
  384:GBt7Br5xjL9AgA71Fbhv7bhv3KueKudLl++KVVC5KHGQog:W7BlpppARFbhjbhPKueKudLw1LC5XQog
Score

9^/10

discovery ransomware
- Renames multiple (501) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware