cdea5e4881924fbb8d0ba8e762fdd080463fa41b77ea2a6dd4c54fe5e5249773 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdea5e4881924fbb8d0ba8e762fdd080463fa41b77ea2a6dd4c54fe5e5249773N.exe
Size

94KB
Sample

240925-1q8e5azclj
MD5

ff977a698ad51361560571d8108e39e0
SHA1

10acfc5dec3e673616027e7c2c4aa3268b5adce1
SHA256

cdea5e4881924fbb8d0ba8e762fdd080463fa41b77ea2a6dd4c54fe5e5249773
SHA512

a40b58725b0ce659a96208da0676f01bbc7b43fb80e4c220ad112c5a745364052852dcae1194a5b944dc5017a1e569a56997f7bd031765cf6ae05a42023f9e1c
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWSYtSh:6e7WpMaxeb0CYJ97lEYNR73e+eBSWSYk

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cdea5e4881924fbb8d0ba8e762fdd080463fa41b77ea2a6dd4c54fe5e5249773N.exe
- Size
  
  94KB
- MD5
  
  ff977a698ad51361560571d8108e39e0
- SHA1
  
  10acfc5dec3e673616027e7c2c4aa3268b5adce1
- SHA256
  
  cdea5e4881924fbb8d0ba8e762fdd080463fa41b77ea2a6dd4c54fe5e5249773
- SHA512
  
  a40b58725b0ce659a96208da0676f01bbc7b43fb80e4c220ad112c5a745364052852dcae1194a5b944dc5017a1e569a56997f7bd031765cf6ae05a42023f9e1c
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWSYtSh:6e7WpMaxeb0CYJ97lEYNR73e+eBSWSYk
Score

9^/10

discovery ransomware
- Renames multiple (3101) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware