b813abb5c913e31abb4254755e805a9b5738f486db5e116a0b7266f70b6c824c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b813abb5c913e31abb4254755e805a9b5738f486db5e116a0b7266f70b6c824cN.exe
Size

44KB
Sample

240925-l7gleazbnj
MD5

a8d2e9cd4cc3f81ea1b5a73c0f8c17a0
SHA1

bef32077e650205a5898ba2e453e7aca007e8f6f
SHA256

b813abb5c913e31abb4254755e805a9b5738f486db5e116a0b7266f70b6c824c
SHA512

6a5c98a6df014218cc42f61a8e0ac99990b5cf1b01964a8a5ac7dddc3a17019af05b0e08c1b14de76b027253ac0a4e49c656efb9ef8d55b5b27ed29a215c9754
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAYAY:W7ZppApBULcfpHLcfpyDoAVY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b813abb5c913e31abb4254755e805a9b5738f486db5e116a0b7266f70b6c824cN.exe
- Size
  
  44KB
- MD5
  
  a8d2e9cd4cc3f81ea1b5a73c0f8c17a0
- SHA1
  
  bef32077e650205a5898ba2e453e7aca007e8f6f
- SHA256
  
  b813abb5c913e31abb4254755e805a9b5738f486db5e116a0b7266f70b6c824c
- SHA512
  
  6a5c98a6df014218cc42f61a8e0ac99990b5cf1b01964a8a5ac7dddc3a17019af05b0e08c1b14de76b027253ac0a4e49c656efb9ef8d55b5b27ed29a215c9754
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAYAY:W7ZppApBULcfpHLcfpyDoAVY
Score

9^/10

discovery ransomware
- Renames multiple (3267) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware