3880d835b27d611a20782ca1eadc66cc2ccb5568e9b9470774062a6cc008185f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ddffebd9fb8e1ce16c2960e35d11370N.exe
Size

72KB
Sample

240906-b33yqsyhlm
MD5

5ddffebd9fb8e1ce16c2960e35d11370
SHA1

4d7212d1e12ad3f268d896636aeda00a3889c071
SHA256

3880d835b27d611a20782ca1eadc66cc2ccb5568e9b9470774062a6cc008185f
SHA512

9e7d6aceee161067f3b30fec48394cce681541f802680b5b756a8c423fd9abd8456cb3138aed76980be8fad9aaae9dc16a387f411712696d4dbe58f2f783ffee
SSDEEP

768:W7BlpNLpARFbhblkYlkuvIYFdm0rEt0rEkEXBwzEXBwAh69YNYOBd:W7ZNLpApCZuvIYXmdtd9hlyOBd

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5ddffebd9fb8e1ce16c2960e35d11370N.exe
- Size
  
  72KB
- MD5
  
  5ddffebd9fb8e1ce16c2960e35d11370
- SHA1
  
  4d7212d1e12ad3f268d896636aeda00a3889c071
- SHA256
  
  3880d835b27d611a20782ca1eadc66cc2ccb5568e9b9470774062a6cc008185f
- SHA512
  
  9e7d6aceee161067f3b30fec48394cce681541f802680b5b756a8c423fd9abd8456cb3138aed76980be8fad9aaae9dc16a387f411712696d4dbe58f2f783ffee
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkuvIYFdm0rEt0rEkEXBwzEXBwAh69YNYOBd:W7ZNLpApCZuvIYXmdtd9hlyOBd
Score

9^/10

discovery ransomware
- Renames multiple (3258) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware