60e626a6978f01ac8725d5f0dda08c55967a89c14f9e5b53ffa09c32db1461bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60e626a6978f01ac8725d5f0dda08c55967a89c14f9e5b53ffa09c32db1461bd.exe
Size

144KB
Sample

240908-dbm5batare
MD5

355835d09511d1732eaf2db9647907af
SHA1

2b8078b6c52f2124b2dd7167fd1e5f6e1ddc1437
SHA256

60e626a6978f01ac8725d5f0dda08c55967a89c14f9e5b53ffa09c32db1461bd
SHA512

ec9c72a6e3ed8bf9c89debf4872c43a21cb56e46b8ce7cd46f66665e41f41c46b7924f0300c8401b751950ef8eb1e8e9299741993a0d1c7d4dfad1d68d2536c3
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYS:RqKvb0CYJ973e+eKZOf7fWqKvb0CYS

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  60e626a6978f01ac8725d5f0dda08c55967a89c14f9e5b53ffa09c32db1461bd.exe
- Size
  
  144KB
- MD5
  
  355835d09511d1732eaf2db9647907af
- SHA1
  
  2b8078b6c52f2124b2dd7167fd1e5f6e1ddc1437
- SHA256
  
  60e626a6978f01ac8725d5f0dda08c55967a89c14f9e5b53ffa09c32db1461bd
- SHA512
  
  ec9c72a6e3ed8bf9c89debf4872c43a21cb56e46b8ce7cd46f66665e41f41c46b7924f0300c8401b751950ef8eb1e8e9299741993a0d1c7d4dfad1d68d2536c3
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7f/e7WpMaxeb0CYS:RqKvb0CYJ973e+eKZOf7fWqKvb0CYS
Score

9^/10

discovery ransomware
- Renames multiple (334) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware