4ae0a9ad31edd7d5b1a618c3457a90de30c438b04b32434d676c20bf7b3072d1 | Triage

Sharing

General

Target

4ae0a9ad31edd7d5b1a618c3457a90de30c438b04b32434d676c20bf7b3072d1N.exe
Size

99KB
Sample

240925-w2kqzstcph
MD5

18ce7b5ac6c96c31bc1446d42f9b8740
SHA1

c8e90d1c9ab7b4932f02d242ab04481f5bb41496
SHA256

4ae0a9ad31edd7d5b1a618c3457a90de30c438b04b32434d676c20bf7b3072d1
SHA512

7e8dafa70385bb6bb5be158797c1246f8d3d9730d4ab4d033727958cd54e18db6b5cbd67f76905cd85393fb0e18528153c98bd7d740356befec78d440565a7ae
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBe:PqFF2Ie+efsL1UabUaNKNKnF3KNKnFC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4ae0a9ad31edd7d5b1a618c3457a90de30c438b04b32434d676c20bf7b3072d1N.exe
- Size
  
  99KB
- MD5
  
  18ce7b5ac6c96c31bc1446d42f9b8740
- SHA1
  
  c8e90d1c9ab7b4932f02d242ab04481f5bb41496
- SHA256
  
  4ae0a9ad31edd7d5b1a618c3457a90de30c438b04b32434d676c20bf7b3072d1
- SHA512
  
  7e8dafa70385bb6bb5be158797c1246f8d3d9730d4ab4d033727958cd54e18db6b5cbd67f76905cd85393fb0e18528153c98bd7d740356befec78d440565a7ae
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBe:PqFF2Ie+efsL1UabUaNKNKnF3KNKnFC
Score

9^/10

discovery ransomware
- Renames multiple (295) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware