d31bf76aaaeeca973ff1e4a3648eefd638977bd5409f47ac576be4ed65a48d89 | Triage

Sharing

General

Target

341962d19972c5a639b315c9ee796cd0N.exe
Size

45KB
Sample

240906-1bhwxsygle
MD5

341962d19972c5a639b315c9ee796cd0
SHA1

c2d3ecfcb041425822209ec75e21491c2556c977
SHA256

d31bf76aaaeeca973ff1e4a3648eefd638977bd5409f47ac576be4ed65a48d89
SHA512

82f3442307c57f0f04bb2fd5136d23ce93dd2138f840e0ff4ecca2d4664474377c1ae1a255c32c960144375ff0239bc5ceef93a495cdff3aae5a16f6811f4f22
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOd+KF/MF/i:W7ZhA7pApM21LOA1LOX2q

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  341962d19972c5a639b315c9ee796cd0N.exe
- Size
  
  45KB
- MD5
  
  341962d19972c5a639b315c9ee796cd0
- SHA1
  
  c2d3ecfcb041425822209ec75e21491c2556c977
- SHA256
  
  d31bf76aaaeeca973ff1e4a3648eefd638977bd5409f47ac576be4ed65a48d89
- SHA512
  
  82f3442307c57f0f04bb2fd5136d23ce93dd2138f840e0ff4ecca2d4664474377c1ae1a255c32c960144375ff0239bc5ceef93a495cdff3aae5a16f6811f4f22
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOd+KF/MF/i:W7ZhA7pApM21LOA1LOX2q
Score

9^/10

discovery ransomware
- Renames multiple (340) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware