clop | 69f0775492cbfcdc8e2c7fa6f37b835eca614b8c19c13a553c22a0bc1738a2aa | Triage

Sharing

General

Target

bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0.zip
Size

683KB
Sample

240425-l6wc6shf87
MD5

d6f4b5160a32477b0d2173918b7b0184
SHA1

6365712d9f0bdc80a6e4ece072e93fa0756fd216
SHA256

69f0775492cbfcdc8e2c7fa6f37b835eca614b8c19c13a553c22a0bc1738a2aa
SHA512

05706f345d1ffe87444e47ccd5f9d92eba226523ff81b5065a942e68b6df842495822eb19e00e92da57e6bbe3f1e3a8fbfc94ec28c351d7a0187f1d4a03c38a4
SSDEEP

12288:H0GVbawIjo79rpne41YAUgW0tdioNrnyQKz6c/1/889EilISWLvdWRrOS5/PyoU:H0GC+ICdiojfc/iiSSWDE3iv

Score

10^/10

clop ransomware

Malware Config

Targets

- Target
  
  bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0
- Size
  
  1.4MB
- MD5
  
  ba257a76cf766085aaf504b8df2528cb
- SHA1
  
  a9a40eee17fa93dab999e5d7773c6b5a28976e03
- SHA256
  
  bb0f1d04c298d0e8025e7293c6669457043a6bce728a19cf58c00d2a278713d0
- SHA512
  
  f5989969b37f1aacaeadadd29d9b3d624876652dc20bf73a00f8ab4540fced950cd2d67a606df1905188bf9636a665cb4d8574b4db59b50a9029730483be64ed
- SSDEEP
  
  24576:oRxnQdwoKSWWrmx0ZGVwS1xhqalmcrYkvvPtq2lDO3Mxz9s:oLHo7iOMVVhZl5+3cs
Score

10^/10

clop ransomware
- clop
  Ransomware discovered in early 2019 which has been actively developed since release.
  ransomware clop
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2