9e1fdd19e82803662c9c166f01d5dc2a0ccd464aafde12316bc8921ea23c2bd9 | Triage

Sharing

General

Target

dabf11d4feaaad7864a85cfb54d6c250N.exe
Size

43KB
Sample

240904-pewreazcjm
MD5

dabf11d4feaaad7864a85cfb54d6c250
SHA1

b40ccc4a1b7a460608ff0a15d210aef3e877ad91
SHA256

9e1fdd19e82803662c9c166f01d5dc2a0ccd464aafde12316bc8921ea23c2bd9
SHA512

a588a3962b234a039e70ca90fd6f4c1a68395e0d1f27268395ae0df2b89b084d9e8396c4a3e1b35ddf30b1ea14670e028eac1d684781ea9dc45257bd28104917
SSDEEP

768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzEM86:W7Z2sspAp5YSfffF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  dabf11d4feaaad7864a85cfb54d6c250N.exe
- Size
  
  43KB
- MD5
  
  dabf11d4feaaad7864a85cfb54d6c250
- SHA1
  
  b40ccc4a1b7a460608ff0a15d210aef3e877ad91
- SHA256
  
  9e1fdd19e82803662c9c166f01d5dc2a0ccd464aafde12316bc8921ea23c2bd9
- SHA512
  
  a588a3962b234a039e70ca90fd6f4c1a68395e0d1f27268395ae0df2b89b084d9e8396c4a3e1b35ddf30b1ea14670e028eac1d684781ea9dc45257bd28104917
- SSDEEP
  
  768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzEM86:W7Z2sspAp5YSfffF
Score

9^/10

discovery ransomware
- Renames multiple (3218) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware