a59264677f8e95bed62bfd77dc620f16ae5be3d2390a12127832f394a8a90689 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10cba8b23f0af53ce1bfdd685be12b30N.exe
Size

43KB
Sample

240905-tpnk1avfmf
MD5

10cba8b23f0af53ce1bfdd685be12b30
SHA1

d6c16aaf2ce3e450f5ec33f1862e1f4a74b3b38e
SHA256

a59264677f8e95bed62bfd77dc620f16ae5be3d2390a12127832f394a8a90689
SHA512

afbf597748452cae036c1aabdf334cfd60d8099150c5a009cf3b5150f0944ffe846a88ce0b70cd669639265983ef7243ed2f5ec368907d28234010f026970537
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3e4S04SsQ4NQ4TiW:W7Blp9pARFbhs101sQ4NQ4X

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  10cba8b23f0af53ce1bfdd685be12b30N.exe
- Size
  
  43KB
- MD5
  
  10cba8b23f0af53ce1bfdd685be12b30
- SHA1
  
  d6c16aaf2ce3e450f5ec33f1862e1f4a74b3b38e
- SHA256
  
  a59264677f8e95bed62bfd77dc620f16ae5be3d2390a12127832f394a8a90689
- SHA512
  
  afbf597748452cae036c1aabdf334cfd60d8099150c5a009cf3b5150f0944ffe846a88ce0b70cd669639265983ef7243ed2f5ec368907d28234010f026970537
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3e4S04SsQ4NQ4TiW:W7Blp9pARFbhs101sQ4NQ4X
Score

9^/10

discovery ransomware
- Renames multiple (393) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware