522f0fb4423607bc5f427fb24dc9564e583a20bd364b7ef66a6ca9358ed75fb4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

522f0fb4423607bc5f427fb24dc9564e583a20bd364b7ef66a6ca9358ed75fb4
Size

52KB
Sample

240727-15agms1dmk
MD5

ae5f5c07ce3998e0fcb8f1ee43199284
SHA1

72977eeda15064e7fb0833eb889aca08f09ff95d
SHA256

522f0fb4423607bc5f427fb24dc9564e583a20bd364b7ef66a6ca9358ed75fb4
SHA512

b78498c9b9435a50d8482e974d1daa83e3c4b8b2c950a5d7aaec8f6143b68b4cdf0d9dd33b9e68b401eddac2715f9c80b84375f8996fd060b03278582eb7e36a
SSDEEP

768:/7BlpQpARFbh/Hx8odxUOiqJFfodxUOiqJFHE+BqKFkszYUzf2Ja:/7ZQpApnxcxXFUg3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  522f0fb4423607bc5f427fb24dc9564e583a20bd364b7ef66a6ca9358ed75fb4
- Size
  
  52KB
- MD5
  
  ae5f5c07ce3998e0fcb8f1ee43199284
- SHA1
  
  72977eeda15064e7fb0833eb889aca08f09ff95d
- SHA256
  
  522f0fb4423607bc5f427fb24dc9564e583a20bd364b7ef66a6ca9358ed75fb4
- SHA512
  
  b78498c9b9435a50d8482e974d1daa83e3c4b8b2c950a5d7aaec8f6143b68b4cdf0d9dd33b9e68b401eddac2715f9c80b84375f8996fd060b03278582eb7e36a
- SSDEEP
  
  768:/7BlpQpARFbh/Hx8odxUOiqJFfodxUOiqJFHE+BqKFkszYUzf2Ja:/7ZQpApnxcxXFUg3
Score

9^/10

discovery ransomware
- Renames multiple (2592) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware