clop | 69f0775492cbfcdc8e2c7fa6f37b835eca614b8c19c13a553c22a0bc1738a2aa | Triage

Sharing

General

Target

bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0.zip
Size

683KB
Sample

240425-l6wc6shf87
MD5

d6f4b5160a32477b0d2173918b7b0184
SHA1

6365712d9f0bdc80a6e4ece072e93fa0756fd216
SHA256

69f0775492cbfcdc8e2c7fa6f37b835eca614b8c19c13a553c22a0bc1738a2aa
SHA512

05706f345d1ffe87444e47ccd5f9d92eba226523ff81b5065a942e68b6df842495822eb19e00e92da57e6bbe3f1e3a8fbfc94ec28c351d7a0187f1d4a03c38a4
SSDEEP

12288:H0GVbawIjo79rpne41YAUgW0tdioNrnyQKz6c/1/889EilISWLvdWRrOS5/PyoU:H0GC+ICdiojfc/iiSSWDE3iv

Score

10^/10

clop ransomware

Malware Config

Targets

- Target
  
  bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0
- Size
  
  1.4MB
- MD5
  
  ba257a76cf766085aaf504b8df2528cb
- SHA1
  
  a9a40eee17fa93dab999e5d7773c6b5a28976e03
- SHA256
  
  bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0
- SHA512
  
  f5989969b37f1aacaeadadd29d9b3d624876652dc20bf73a00f8ab4540fced950cd2d67a606df1905188bf9636a665cb4d8574b4db59b50a9029730483be64ed
- SSDEEP
  
  24576:oRxnQdwoKSWWrmx0ZGVwS1xhqalmcrYkvvPtq2lDO3Mxz9s:oLHo7iOMVVhZl5+3cs
Score

10^/10

clop ransomware
- clop
  Ransomware discovered in early 2019 which has been actively developed since release.
  ransomware clop
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2