adde0a29f3720c6377963c9438bc23fadecaf038a4c392860be2811075e1a200 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

adde0a29f3720c6377963c9438bc23fadecaf038a4c392860be2811075e1a200N.exe
Size

56KB
Sample

240925-c35m1azfkp
MD5

6670c36334b955498fa12357941a28c0
SHA1

fc6f95c4c1ba03359906f82d52fec67afe18df8e
SHA256

adde0a29f3720c6377963c9438bc23fadecaf038a4c392860be2811075e1a200
SHA512

5d2321cb6533042df7413969fdea5a1dcc800857ff37903efcec4420143a76624aeea9900e219976f4bb7496529e4a85161af14de7450ff9a98a9b9d37541fc4
SSDEEP

768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nyQG+QGs4M:W7ZNLpApCZrt8PWGoPWGANdNyky4M

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  adde0a29f3720c6377963c9438bc23fadecaf038a4c392860be2811075e1a200N.exe
- Size
  
  56KB
- MD5
  
  6670c36334b955498fa12357941a28c0
- SHA1
  
  fc6f95c4c1ba03359906f82d52fec67afe18df8e
- SHA256
  
  adde0a29f3720c6377963c9438bc23fadecaf038a4c392860be2811075e1a200
- SHA512
  
  5d2321cb6533042df7413969fdea5a1dcc800857ff37903efcec4420143a76624aeea9900e219976f4bb7496529e4a85161af14de7450ff9a98a9b9d37541fc4
- SSDEEP
  
  768:W7BlpNLpARFbhblkYlkrt8PWGoPWGqMs1MsR5nd5nyQG+QGs4M:W7ZNLpApCZrt8PWGoPWGANdNyky4M
Score

9^/10

discovery ransomware
- Renames multiple (3219) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware