baf5d61fa94f8a9a113e22061c02af117d41ddbcf2ab3c40ac63029e25f8d71e | Triage

Sharing

General

Target

7ab9ceebe28c6339487bf0fa0e341870N.exe
Size

54KB
Sample

240905-he25vsvcln
MD5

7ab9ceebe28c6339487bf0fa0e341870
SHA1

61f033ec35f3fa7e95f5deb22a04492e9b96dcb7
SHA256

baf5d61fa94f8a9a113e22061c02af117d41ddbcf2ab3c40ac63029e25f8d71e
SHA512

ee113bcca7f6174c5e8869108f74f4fd0889ea9e6e82f8b8597195bb48116fca0f3c942d7fa2aea40beb0e4dc1b5195b73bd7bef010dd1102f0e1ed62ee5efe5
SSDEEP

768:W7Blp2sspARFbh5YSfffynfWK9WKWQFLeoVERZLeoVERR:W7Z2sspAp5YSfffyneKIKWQyWR

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  7ab9ceebe28c6339487bf0fa0e341870N.exe
- Size
  
  54KB
- MD5
  
  7ab9ceebe28c6339487bf0fa0e341870
- SHA1
  
  61f033ec35f3fa7e95f5deb22a04492e9b96dcb7
- SHA256
  
  baf5d61fa94f8a9a113e22061c02af117d41ddbcf2ab3c40ac63029e25f8d71e
- SHA512
  
  ee113bcca7f6174c5e8869108f74f4fd0889ea9e6e82f8b8597195bb48116fca0f3c942d7fa2aea40beb0e4dc1b5195b73bd7bef010dd1102f0e1ed62ee5efe5
- SSDEEP
  
  768:W7Blp2sspARFbh5YSfffynfWK9WKWQFLeoVERZLeoVERR:W7Z2sspAp5YSfffyneKIKWQyWR
Score

9^/10

discovery ransomware
- Renames multiple (3461) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware