bb2abf7812be9c193ef10de19797674e28aa02de1b4aabed9704eb1cba7f2302 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

66d87519b73101d4e5c612513b31d620N.exe
Size

39KB
Sample

240905-p4e5yssard
MD5

66d87519b73101d4e5c612513b31d620
SHA1

d07ecc90d4f77323956bbdf52a797d25c3cb6c26
SHA256

bb2abf7812be9c193ef10de19797674e28aa02de1b4aabed9704eb1cba7f2302
SHA512

4c5716351705a02fd1e44826d9c3bd69bb3ae177864cc11b69b7207a2e76227a265547cd0d9a1687a1fad89eae09f675bce805974fe19088532ff783a6782f99
SSDEEP

384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBpR42L5FgAytBpW/3:W7BlpppARFbhjbhg42LcfpR42LcfpW/3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  66d87519b73101d4e5c612513b31d620N.exe
- Size
  
  39KB
- MD5
  
  66d87519b73101d4e5c612513b31d620
- SHA1
  
  d07ecc90d4f77323956bbdf52a797d25c3cb6c26
- SHA256
  
  bb2abf7812be9c193ef10de19797674e28aa02de1b4aabed9704eb1cba7f2302
- SHA512
  
  4c5716351705a02fd1e44826d9c3bd69bb3ae177864cc11b69b7207a2e76227a265547cd0d9a1687a1fad89eae09f675bce805974fe19088532ff783a6782f99
- SSDEEP
  
  384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBpR42L5FgAytBpW/3:W7BlpppARFbhjbhg42LcfpR42LcfpW/3
Score

9^/10

discovery ransomware
- Renames multiple (484) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware