5cd5b4c5adbf2609bfdfab080911f3c44eb7b556f061f8142f2c979e76770405 | Triage

Sharing

General

Target

d4d3ace18261bc5acd02f27f6fa97470N.exe
Size

90KB
Sample

240909-lpv13s1hmq
MD5

d4d3ace18261bc5acd02f27f6fa97470
SHA1

0826cf7520c8cbe1d1ead5057333271448e9a7aa
SHA256

5cd5b4c5adbf2609bfdfab080911f3c44eb7b556f061f8142f2c979e76770405
SHA512

44d359f6686a6dd7477291b89c72409a913ff719784ef910fe2218df5cf5eb114be1b4427ba76f1a543b5d4d95f93a6744f5600184c8849290cab887a6b6c008
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex2L:69WpQE0zUzXA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d4d3ace18261bc5acd02f27f6fa97470N.exe
- Size
  
  90KB
- MD5
  
  d4d3ace18261bc5acd02f27f6fa97470
- SHA1
  
  0826cf7520c8cbe1d1ead5057333271448e9a7aa
- SHA256
  
  5cd5b4c5adbf2609bfdfab080911f3c44eb7b556f061f8142f2c979e76770405
- SHA512
  
  44d359f6686a6dd7477291b89c72409a913ff719784ef910fe2218df5cf5eb114be1b4427ba76f1a543b5d4d95f93a6744f5600184c8849290cab887a6b6c008
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBK2LUf7XQex2L:69WpQE0zUzXA
Score

9^/10

discovery ransomware
- Renames multiple (3095) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware