9f1835e0e357e4faaea5a7ac9ea95fa758572195fbd94d8bd9a6581efd299d0f | Triage

Sharing

General

Target

6c09af7f15a1529b824c20b469885570N.exe
Size

146KB
Sample

240904-jx31jswgnk
MD5

6c09af7f15a1529b824c20b469885570
SHA1

67a64f07d5159bc0a378778c896e525df7da1794
SHA256

9f1835e0e357e4faaea5a7ac9ea95fa758572195fbd94d8bd9a6581efd299d0f
SHA512

b6309fde66cd75948116ff3869b7ad91cdff67afee48b35917d2f8f8691899434d234b2d2f0534a98894c758b56fd10e7d8ee24684a79455ca98a364f60e651f
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYfcd:RqKvb0CYJ973e+eKZOf7fWqKvb0CYfcd

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6c09af7f15a1529b824c20b469885570N.exe
- Size
  
  146KB
- MD5
  
  6c09af7f15a1529b824c20b469885570
- SHA1
  
  67a64f07d5159bc0a378778c896e525df7da1794
- SHA256
  
  9f1835e0e357e4faaea5a7ac9ea95fa758572195fbd94d8bd9a6581efd299d0f
- SHA512
  
  b6309fde66cd75948116ff3869b7ad91cdff67afee48b35917d2f8f8691899434d234b2d2f0534a98894c758b56fd10e7d8ee24684a79455ca98a364f60e651f
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYfcd:RqKvb0CYJ973e+eKZOf7fWqKvb0CYfcd
Score

9^/10

discovery ransomware
- Renames multiple (2811) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware