9a49a9b0e634031dde83e3a0ce184ef86e4aa6c5017d21aa16d36b59430b3407 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a49a9b0e634031dde83e3a0ce184ef86e4aa6c5017d21aa16d36b59430b3407.exe
Size

49KB
Sample

240908-d6f99awaqf
MD5

d4b688ad1dc3e63223e9982beea304af
SHA1

9cdb0f7ad71f027418503b3f25fb70c6dbe9020b
SHA256

9a49a9b0e634031dde83e3a0ce184ef86e4aa6c5017d21aa16d36b59430b3407
SHA512

34f130b3ebf72308812a296fdcfe548bd3d78b17777bab903b615e9179d230b5af2331dbdd74331458ee63a96dcc30d11a0319cdf5506b8166a4772607ec1783
SSDEEP

384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBVRz:W7BlpppARFbhjbhg42LcfT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9a49a9b0e634031dde83e3a0ce184ef86e4aa6c5017d21aa16d36b59430b3407.exe
- Size
  
  49KB
- MD5
  
  d4b688ad1dc3e63223e9982beea304af
- SHA1
  
  9cdb0f7ad71f027418503b3f25fb70c6dbe9020b
- SHA256
  
  9a49a9b0e634031dde83e3a0ce184ef86e4aa6c5017d21aa16d36b59430b3407
- SHA512
  
  34f130b3ebf72308812a296fdcfe548bd3d78b17777bab903b615e9179d230b5af2331dbdd74331458ee63a96dcc30d11a0319cdf5506b8166a4772607ec1783
- SSDEEP
  
  384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBVRz:W7BlpppARFbhjbhg42LcfT
Score

9^/10

discovery ransomware
- Renames multiple (3754) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware