00fe38b2f9e4b29eda5b2b9b19344ecbecad7c575579257201e2091b14b705a4 | Triage

Sharing

General

Target

e4cd4575d842ed1822c15f32e8df2ef0N.exe
Size

84KB
Sample

240913-zeqkhayarc
MD5

e4cd4575d842ed1822c15f32e8df2ef0
SHA1

419c1688f8739fb99d45df5eb33daa242ffc9d2e
SHA256

00fe38b2f9e4b29eda5b2b9b19344ecbecad7c575579257201e2091b14b705a4
SHA512

d986e8781f749d82ff1d858c19cfa302470d8668c9ee76e55657a70ea78085bcff6159c6c9e2c497dd073e0ecd25b2e3ff16795859b6fa04fa3cb9dbc07d5f28
SSDEEP

384:yBs7Br5xjL8AgA71FbhvJUfWGUfHjtmjtd5NaMR5NaBQZbHN9+tcn8ID+973u:/7BlpQpARFbhiWb8naOnaBaJ9+qDO3u

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e4cd4575d842ed1822c15f32e8df2ef0N.exe
- Size
  
  84KB
- MD5
  
  e4cd4575d842ed1822c15f32e8df2ef0
- SHA1
  
  419c1688f8739fb99d45df5eb33daa242ffc9d2e
- SHA256
  
  00fe38b2f9e4b29eda5b2b9b19344ecbecad7c575579257201e2091b14b705a4
- SHA512
  
  d986e8781f749d82ff1d858c19cfa302470d8668c9ee76e55657a70ea78085bcff6159c6c9e2c497dd073e0ecd25b2e3ff16795859b6fa04fa3cb9dbc07d5f28
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvJUfWGUfHjtmjtd5NaMR5NaBQZbHN9+tcn8ID+973u:/7BlpQpARFbhiWb8naOnaBaJ9+qDO3u
Score

9^/10

discovery ransomware
- Renames multiple (3130) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware