64c0acf76c6e9aebfffcb239b894e5002642576b2b59d5ad785b6a19440b5fed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28a0c413f453d2822314714e935c1f80N.exe
Size

44KB
Sample

240909-w1etcasekk
MD5

28a0c413f453d2822314714e935c1f80
SHA1

cb7d25dcddaf9e58debf093b308e03e78dc222ac
SHA256

64c0acf76c6e9aebfffcb239b894e5002642576b2b59d5ad785b6a19440b5fed
SHA512

25a77855c9ae66467f764a39c5382d58d2c6d43efa266eb081d95c8cb097db38ccff7526443d150b321cde3b597bec9ae3034e33f457462e74ff1e0a1dc574c5
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLr3jxOxw:W7ZppApBULcfpHLcfpyDMxOxw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  28a0c413f453d2822314714e935c1f80N.exe
- Size
  
  44KB
- MD5
  
  28a0c413f453d2822314714e935c1f80
- SHA1
  
  cb7d25dcddaf9e58debf093b308e03e78dc222ac
- SHA256
  
  64c0acf76c6e9aebfffcb239b894e5002642576b2b59d5ad785b6a19440b5fed
- SHA512
  
  25a77855c9ae66467f764a39c5382d58d2c6d43efa266eb081d95c8cb097db38ccff7526443d150b321cde3b597bec9ae3034e33f457462e74ff1e0a1dc574c5
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLr3jxOxw:W7ZppApBULcfpHLcfpyDMxOxw
Score

9^/10

discovery ransomware
- Renames multiple (3181) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware