e742572837f46c34637025cb95e17c30cf202af03a1d7a58fa512fc6bad997cd | Triage

Sharing

General

Target

9e3c56d6f3410391e49762f97e7ce310N.exe
Size

40KB
Sample

240914-2effmszgkl
MD5

9e3c56d6f3410391e49762f97e7ce310
SHA1

7e0ef42aa2eeeacd53dca7865e9d34ef2f43e036
SHA256

e742572837f46c34637025cb95e17c30cf202af03a1d7a58fa512fc6bad997cd
SHA512

9d3c2c52337a2e839696ead2e450c59a3c0161db9a06cc386b4825c60436cb2c8bd693ab2e5d1f41ee5efb6135620fbc194825417deb96213ba92ac4adbe3a6a
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3y38guh538guh3:W7Blp9pARFbhW8ZZ8Z3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9e3c56d6f3410391e49762f97e7ce310N.exe
- Size
  
  40KB
- MD5
  
  9e3c56d6f3410391e49762f97e7ce310
- SHA1
  
  7e0ef42aa2eeeacd53dca7865e9d34ef2f43e036
- SHA256
  
  e742572837f46c34637025cb95e17c30cf202af03a1d7a58fa512fc6bad997cd
- SHA512
  
  9d3c2c52337a2e839696ead2e450c59a3c0161db9a06cc386b4825c60436cb2c8bd693ab2e5d1f41ee5efb6135620fbc194825417deb96213ba92ac4adbe3a6a
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3y38guh538guh3:W7Blp9pARFbhW8ZZ8Z3
Score

9^/10

discovery ransomware
- Renames multiple (334) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware