1ab54aeba986ecdcc7d4fe57d5ab88fcf31a193e1775107d5bd717a83468fe2c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1ab54aeba986ecdcc7d4fe57d5ab88fcf31a193e1775107d5bd717a83468fe2cN.exe
Size

76KB
Sample

240925-1sv8ksshjf
MD5

a2c8f80ac551143d3df29a3a33ef90b0
SHA1

fc7fd6102b0b8d7ef1c069541fb3b75d0068ec61
SHA256

1ab54aeba986ecdcc7d4fe57d5ab88fcf31a193e1775107d5bd717a83468fe2c
SHA512

0b915d2c287cf519a865b0a0508763a0fc5c49163567536d7773dda2c0b5b2282d91bff4798bf6a75270fd9ab10c05cc01a16ac63a10c6bdf4ec0707c47d06fe
SSDEEP

1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8+CtlYSDP:6e76mQSostXDP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1ab54aeba986ecdcc7d4fe57d5ab88fcf31a193e1775107d5bd717a83468fe2cN.exe
- Size
  
  76KB
- MD5
  
  a2c8f80ac551143d3df29a3a33ef90b0
- SHA1
  
  fc7fd6102b0b8d7ef1c069541fb3b75d0068ec61
- SHA256
  
  1ab54aeba986ecdcc7d4fe57d5ab88fcf31a193e1775107d5bd717a83468fe2c
- SHA512
  
  0b915d2c287cf519a865b0a0508763a0fc5c49163567536d7773dda2c0b5b2282d91bff4798bf6a75270fd9ab10c05cc01a16ac63a10c6bdf4ec0707c47d06fe
- SSDEEP
  
  1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8+CtlYSDP:6e76mQSostXDP
Score

9^/10

discovery ransomware
- Renames multiple (3217) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware