9fca1a653041d9fe885b46b7b145cb7965b1d6edc1f19ee4222ce4e1115692e9 | Triage

Sharing

General

Target

2d95be176e80e44ee41e827f220aa9a0N.exe
Size

43KB
Sample

240915-jqdr3stcrj
MD5

2d95be176e80e44ee41e827f220aa9a0
SHA1

4956dea16cf2f45ddb7270af0ae3014d7039352f
SHA256

9fca1a653041d9fe885b46b7b145cb7965b1d6edc1f19ee4222ce4e1115692e9
SHA512

ca7855fd0843dda32764301c5f6e5813d18a9943d6ab80e2e2466cd7c605b2cd76dbfb8fddee0bede0d8bad10d8a3da2567f60fbd337de6e5573c49e4318acce
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAz:W7ZppApBULcfpHLcfpyDoAz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2d95be176e80e44ee41e827f220aa9a0N.exe
- Size
  
  43KB
- MD5
  
  2d95be176e80e44ee41e827f220aa9a0
- SHA1
  
  4956dea16cf2f45ddb7270af0ae3014d7039352f
- SHA256
  
  9fca1a653041d9fe885b46b7b145cb7965b1d6edc1f19ee4222ce4e1115692e9
- SHA512
  
  ca7855fd0843dda32764301c5f6e5813d18a9943d6ab80e2e2466cd7c605b2cd76dbfb8fddee0bede0d8bad10d8a3da2567f60fbd337de6e5573c49e4318acce
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAz:W7ZppApBULcfpHLcfpyDoAz
Score

9^/10

discovery ransomware
- Renames multiple (3461) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware