84293dbb7f0f61ddb63ff5bc6850bbb1715892036924bb2efa72a4c63090241e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

84293dbb7f0f61ddb63ff5bc6850bbb1715892036924bb2efa72a4c63090241eN.exe
Size

49KB
Sample

240925-mtdg9sthrc
MD5

beb72fb95026db798b76957162dd70e0
SHA1

43d8ad426d45c5ff2e9fb37441bf8bb49f2991e0
SHA256

84293dbb7f0f61ddb63ff5bc6850bbb1715892036924bb2efa72a4c63090241e
SHA512

e844ab77de5a8d89f7562efca6f069f01604f6ca2aafeebc32773b6ead65d8c87d864a6384c2f4cb37b6e82f6525af5330bc86f654e80c655aa499bb8116dfc7
SSDEEP

768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c5G:W7ZhA7dABJJZENTBWv36s

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  84293dbb7f0f61ddb63ff5bc6850bbb1715892036924bb2efa72a4c63090241eN.exe
- Size
  
  49KB
- MD5
  
  beb72fb95026db798b76957162dd70e0
- SHA1
  
  43d8ad426d45c5ff2e9fb37441bf8bb49f2991e0
- SHA256
  
  84293dbb7f0f61ddb63ff5bc6850bbb1715892036924bb2efa72a4c63090241e
- SHA512
  
  e844ab77de5a8d89f7562efca6f069f01604f6ca2aafeebc32773b6ead65d8c87d864a6384c2f4cb37b6e82f6525af5330bc86f654e80c655aa499bb8116dfc7
- SSDEEP
  
  768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c5G:W7ZhA7dABJJZENTBWv36s
Score

9^/10

discovery ransomware
- Renames multiple (3164) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware