a2d1a361dd68d5c9d1137efaaf9ae7e82c763b9e6472bda985188518c92c5fbe | Triage

Sharing

General

Target

a2d1a361dd68d5c9d1137efaaf9ae7e82c763b9e6472bda985188518c92c5fbe.exe
Size

149KB
Sample

241119-ttqk6ayfnm
MD5

798f3a3fddcabbc80f9f5c68f94f0408
SHA1

0172c7c3401dbecd89e562167e9dc32b52da7652
SHA256

a2d1a361dd68d5c9d1137efaaf9ae7e82c763b9e6472bda985188518c92c5fbe
SHA512

d99339154fe1eeac97a6c6a7858804d465bd741d89a2391716e87a1875f17789ad12b77a7aba3d0f68bf2196499dbeef876e5f173b596e04c84b5114b7461170
SSDEEP

3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsP9iMGfU8:tb9iMGsSaOyif

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a2d1a361dd68d5c9d1137efaaf9ae7e82c763b9e6472bda985188518c92c5fbe.exe
- Size
  
  149KB
- MD5
  
  798f3a3fddcabbc80f9f5c68f94f0408
- SHA1
  
  0172c7c3401dbecd89e562167e9dc32b52da7652
- SHA256
  
  a2d1a361dd68d5c9d1137efaaf9ae7e82c763b9e6472bda985188518c92c5fbe
- SHA512
  
  d99339154fe1eeac97a6c6a7858804d465bd741d89a2391716e87a1875f17789ad12b77a7aba3d0f68bf2196499dbeef876e5f173b596e04c84b5114b7461170
- SSDEEP
  
  3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsP9iMGfU8:tb9iMGsSaOyif
Score

9^/10

discovery ransomware
- Renames multiple (2847) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware