c1647fa089f8dc36f3d10778314b9e762d14abad783118058ae4a7ba835dc2f1 | Triage

Sharing

General

Target

c1647fa089f8dc36f3d10778314b9e762d14abad783118058ae4a7ba835dc2f1
Size

33KB
Sample

240726-df5j6ascnr
MD5

cff9c4d2667034b46987f38be4858b41
SHA1

901364035ef8bc25b7466b83d6f054d2800f6d62
SHA256

c1647fa089f8dc36f3d10778314b9e762d14abad783118058ae4a7ba835dc2f1
SHA512

dd605fab0180fb53e7db483d68a4d5fe74f1d9110f89aaf09c8a05b1573fe7cbc59cc7eb10d948bed4b63ef681bf96169dafbec9f6a9b0e4e8782f93bf71cb51
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHscLcNx4:yBs7Br5xjL8AgA71FbhvlcLcY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c1647fa089f8dc36f3d10778314b9e762d14abad783118058ae4a7ba835dc2f1
- Size
  
  33KB
- MD5
  
  cff9c4d2667034b46987f38be4858b41
- SHA1
  
  901364035ef8bc25b7466b83d6f054d2800f6d62
- SHA256
  
  c1647fa089f8dc36f3d10778314b9e762d14abad783118058ae4a7ba835dc2f1
- SHA512
  
  dd605fab0180fb53e7db483d68a4d5fe74f1d9110f89aaf09c8a05b1573fe7cbc59cc7eb10d948bed4b63ef681bf96169dafbec9f6a9b0e4e8782f93bf71cb51
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHscLcNx4:yBs7Br5xjL8AgA71FbhvlcLcY
Score

9^/10

discovery ransomware
- Renames multiple (3447) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware