0370a3c9ecbd4ae17e37862da02b2dbe67293e2cd4659524568465daa6a4740e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0370a3c9ecbd4ae17e37862da02b2dbe67293e2cd4659524568465daa6a4740e
Size

102KB
Sample

240725-wvr7gszapa
MD5

9b9052f45d998cfe2e90f6fdc64ff51d
SHA1

2961454d10200232d2ebff9e209469a76737dcd1
SHA256

0370a3c9ecbd4ae17e37862da02b2dbe67293e2cd4659524568465daa6a4740e
SHA512

60b0cc90424f26715550d62a803e6d2a6e17a2402f8d24aed75831026de4f8f85a1a36c85b27eb753cf3c723abd0b2001dbff34cd6eefcf8b0842b919b4706ae
SSDEEP

3072:9QWpze+eO888888888888888888888888888888888888888888888888888888a:Lpe+ekeTiOKw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0370a3c9ecbd4ae17e37862da02b2dbe67293e2cd4659524568465daa6a4740e
- Size
  
  102KB
- MD5
  
  9b9052f45d998cfe2e90f6fdc64ff51d
- SHA1
  
  2961454d10200232d2ebff9e209469a76737dcd1
- SHA256
  
  0370a3c9ecbd4ae17e37862da02b2dbe67293e2cd4659524568465daa6a4740e
- SHA512
  
  60b0cc90424f26715550d62a803e6d2a6e17a2402f8d24aed75831026de4f8f85a1a36c85b27eb753cf3c723abd0b2001dbff34cd6eefcf8b0842b919b4706ae
- SSDEEP
  
  3072:9QWpze+eO888888888888888888888888888888888888888888888888888888a:Lpe+ekeTiOKw
Score

9^/10

discovery ransomware
- Renames multiple (2843) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware