ad4d7bd80f403d5c3b3c48d5f47a3770ca99f2366e931349737cbbd73ee27405 | Triage

Sharing

General

Target

b37b5af6f37d14e0138d8472338aa050N.exe
Size

65KB
Sample

240905-pr56ls1hjd
MD5

b37b5af6f37d14e0138d8472338aa050
SHA1

d41f91a02beb06c0acb0e259d82a1b3367376174
SHA256

ad4d7bd80f403d5c3b3c48d5f47a3770ca99f2366e931349737cbbd73ee27405
SHA512

7d73ae86864d8c1ba069c72534845c18e3b1374bd172831fbe084b866292c0a78a25539737d0fe22d3804069a1be9c7674eafe67bf0b3cbfc6911ed9c2954183
SSDEEP

768:W7BlpNLpARFbhblkYlkuvIYFdJSpXeX4AGAbehQ:W7ZNLpApCZuvIYXJSpXeX/ByhQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b37b5af6f37d14e0138d8472338aa050N.exe
- Size
  
  65KB
- MD5
  
  b37b5af6f37d14e0138d8472338aa050
- SHA1
  
  d41f91a02beb06c0acb0e259d82a1b3367376174
- SHA256
  
  ad4d7bd80f403d5c3b3c48d5f47a3770ca99f2366e931349737cbbd73ee27405
- SHA512
  
  7d73ae86864d8c1ba069c72534845c18e3b1374bd172831fbe084b866292c0a78a25539737d0fe22d3804069a1be9c7674eafe67bf0b3cbfc6911ed9c2954183
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkuvIYFdJSpXeX4AGAbehQ:W7ZNLpApCZuvIYXJSpXeX/ByhQ
Score

9^/10

discovery ransomware
- Renames multiple (3122) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware