fd71bbd2ef3e491a0712c1a2b2a867b1d2459911eb72a0ecfbd70659d1cf34b9 | Triage

Sharing

General

Target

8a57918edf04be84b3d27782cd513380N.exe
Size

69KB
Sample

240915-fw3fvaxekp
MD5

8a57918edf04be84b3d27782cd513380
SHA1

4cee33a582b25ec6d65b2a1f6f15fcc0f3c75100
SHA256

fd71bbd2ef3e491a0712c1a2b2a867b1d2459911eb72a0ecfbd70659d1cf34b9
SHA512

f5b2e021d4c4f099bf674691928ca6f7a9cac59fbaea78c985aa9893250201ae41167fc61cc9132973c0dee8d06b4436f361d27948e294c56b09bf99a2ca7cd8
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPKWZ:6pWpUnDXxX6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8a57918edf04be84b3d27782cd513380N.exe
- Size
  
  69KB
- MD5
  
  8a57918edf04be84b3d27782cd513380
- SHA1
  
  4cee33a582b25ec6d65b2a1f6f15fcc0f3c75100
- SHA256
  
  fd71bbd2ef3e491a0712c1a2b2a867b1d2459911eb72a0ecfbd70659d1cf34b9
- SHA512
  
  f5b2e021d4c4f099bf674691928ca6f7a9cac59fbaea78c985aa9893250201ae41167fc61cc9132973c0dee8d06b4436f361d27948e294c56b09bf99a2ca7cd8
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPKWZ:6pWpUnDXxX6
Score

9^/10

discovery ransomware
- Renames multiple (3194) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware