fc4a5fb188c84219582959f83bfcb953d707e678f7de4e7a872d3e91ed23d65b | Triage

Sharing

General

Target

Trojan.Danger.ATA_virussign.com_84cc366d9e5d2cbc1c78a9be6bd82dbd.exe
Size

2.0MB
Sample

240907-p1a2tswdjk
MD5

84cc366d9e5d2cbc1c78a9be6bd82dbd
SHA1

ae6eea5e6a6a98b2d1961e4d83d582e91184e1af
SHA256

fc4a5fb188c84219582959f83bfcb953d707e678f7de4e7a872d3e91ed23d65b
SHA512

d74f939e4e51f4b622d8b51170e48452ca97b3e78ac0746afb38c12c8455d5b4f41a197e16d791b4b44f42c5736aa4198b0c1d0493dc247df65762ab67e6ef2c
SSDEEP

24576:iFF2C7iXabAhTzC1BwNfA2fWfbBIs5chHZskEOK:iFT7iXabxBoW58Zsr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  Trojan.Danger.ATA_virussign.com_84cc366d9e5d2cbc1c78a9be6bd82dbd.exe
- Size
  
  2.0MB
- MD5
  
  84cc366d9e5d2cbc1c78a9be6bd82dbd
- SHA1
  
  ae6eea5e6a6a98b2d1961e4d83d582e91184e1af
- SHA256
  
  fc4a5fb188c84219582959f83bfcb953d707e678f7de4e7a872d3e91ed23d65b
- SHA512
  
  d74f939e4e51f4b622d8b51170e48452ca97b3e78ac0746afb38c12c8455d5b4f41a197e16d791b4b44f42c5736aa4198b0c1d0493dc247df65762ab67e6ef2c
- SSDEEP
  
  24576:iFF2C7iXabAhTzC1BwNfA2fWfbBIs5chHZskEOK:iFT7iXabxBoW58Zsr
Score

9^/10

discovery ransomware
- Renames multiple (224) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware