cc883a126c81326b05ce1e166dbded4264805da6ecf3e7adc9bd815dc497ac9a | Triage

Sharing

General

Target

cc883a126c81326b05ce1e166dbded4264805da6ecf3e7adc9bd815dc497ac9a.exe
Size

65KB
Sample

241120-eksa3azfla
MD5

65ec6472724f806f6c4500ea8aa36423
SHA1

f639131ddc8545c16ed9c8deb230f1d4b9345cc9
SHA256

cc883a126c81326b05ce1e166dbded4264805da6ecf3e7adc9bd815dc497ac9a
SHA512

9af35f42a62e4466b6508ef90be499b913dcd6e27949641d9f1743ddd81cef5e8d9c3ae9d2869224c6253b5abc20cb7605de226042cc12d6ffba5dcb6e40551c
SSDEEP

1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsoa:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsn

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cc883a126c81326b05ce1e166dbded4264805da6ecf3e7adc9bd815dc497ac9a.exe
- Size
  
  65KB
- MD5
  
  65ec6472724f806f6c4500ea8aa36423
- SHA1
  
  f639131ddc8545c16ed9c8deb230f1d4b9345cc9
- SHA256
  
  cc883a126c81326b05ce1e166dbded4264805da6ecf3e7adc9bd815dc497ac9a
- SHA512
  
  9af35f42a62e4466b6508ef90be499b913dcd6e27949641d9f1743ddd81cef5e8d9c3ae9d2869224c6253b5abc20cb7605de226042cc12d6ffba5dcb6e40551c
- SSDEEP
  
  1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsoa:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsn
Score

9^/10

discovery ransomware
- Renames multiple (2881) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware