bed2a30b8ce4a8f89356bf9e2959bb1b35849b1a71686f22b28720dd5de66030 | Triage

Sharing

General

Target

5fdaa7245aaada1ea614bc686f307f00N.exe
Size

36KB
Sample

240904-jw9fyawgll
MD5

5fdaa7245aaada1ea614bc686f307f00
SHA1

9437a72deba8d40664409e80d0819fe30e95628a
SHA256

bed2a30b8ce4a8f89356bf9e2959bb1b35849b1a71686f22b28720dd5de66030
SHA512

74053c049fa0d3cf02997132ab8c77d92d67fade749ba494fe65c92b9ebc640f5e1278d7f7f199b8ec18b9b74bcff9785c761f54752fb106438e9791f13501db
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHJyBWYTuPTDTpI+DWYv:yBs7Br5xjL8AgA71FbhvM5

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5fdaa7245aaada1ea614bc686f307f00N.exe
- Size
  
  36KB
- MD5
  
  5fdaa7245aaada1ea614bc686f307f00
- SHA1
  
  9437a72deba8d40664409e80d0819fe30e95628a
- SHA256
  
  bed2a30b8ce4a8f89356bf9e2959bb1b35849b1a71686f22b28720dd5de66030
- SHA512
  
  74053c049fa0d3cf02997132ab8c77d92d67fade749ba494fe65c92b9ebc640f5e1278d7f7f199b8ec18b9b74bcff9785c761f54752fb106438e9791f13501db
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHJyBWYTuPTDTpI+DWYv:yBs7Br5xjL8AgA71FbhvM5
Score

9^/10

discovery ransomware
- Renames multiple (3219) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware