a91c0f2bd0104945cfe83ef7838b5223377a97d0a3d99eba1969473fb0572337 | Triage

Sharing

General

Target

a91c0f2bd0104945cfe83ef7838b5223377a97d0a3d99eba1969473fb0572337.exe
Size

48KB
Sample

240930-1bymdawcqk
MD5

cb050460312a948ff8566aefa55e926a
SHA1

a5a600853ae79f5b673bad3e1da0b136fea9adf6
SHA256

a91c0f2bd0104945cfe83ef7838b5223377a97d0a3d99eba1969473fb0572337
SHA512

cf9370364de4ac0e0a2885187b79b79ff85b36e4d837f56e282a011c032b07fd4b0fad0022ea65aa9194daf5659d83ef22958f6744330bb5c1d0a6e6f9afcb4d
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Ijftf/xDxgx:/7BlpQpARFbhNIiJwsJwwnZtR6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a91c0f2bd0104945cfe83ef7838b5223377a97d0a3d99eba1969473fb0572337.exe
- Size
  
  48KB
- MD5
  
  cb050460312a948ff8566aefa55e926a
- SHA1
  
  a5a600853ae79f5b673bad3e1da0b136fea9adf6
- SHA256
  
  a91c0f2bd0104945cfe83ef7838b5223377a97d0a3d99eba1969473fb0572337
- SHA512
  
  cf9370364de4ac0e0a2885187b79b79ff85b36e4d837f56e282a011c032b07fd4b0fad0022ea65aa9194daf5659d83ef22958f6744330bb5c1d0a6e6f9afcb4d
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Ijftf/xDxgx:/7BlpQpARFbhNIiJwsJwwnZtR6
Score

9^/10

discovery ransomware
- Renames multiple (3739) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware