89cf630c37d9644c19c1fd95f05bfb9341ee6e537dee6be496488369faa87444 | Triage

Sharing

General

Target

89cf630c37d9644c19c1fd95f05bfb9341ee6e537dee6be496488369faa87444
Size

106KB
Sample

240727-andjvsxemh
MD5

2073e1939210e19d7d7c552d55cbde3b
SHA1

c29782d2dd220ca3fc45f86d992c6cbcc684f8b3
SHA256

89cf630c37d9644c19c1fd95f05bfb9341ee6e537dee6be496488369faa87444
SHA512

d77298786dba5e2e6f33738d76bbee7ed5741fa52f9b0d34f5a755d54fb003b0503fc84af250965a9a1358a2b01ee0d0d1844c1fe5aa10f0b5f1702ed78f6b91
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fm:RqKvb0CYJ973e+eKZOf7fm

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  89cf630c37d9644c19c1fd95f05bfb9341ee6e537dee6be496488369faa87444
- Size
  
  106KB
- MD5
  
  2073e1939210e19d7d7c552d55cbde3b
- SHA1
  
  c29782d2dd220ca3fc45f86d992c6cbcc684f8b3
- SHA256
  
  89cf630c37d9644c19c1fd95f05bfb9341ee6e537dee6be496488369faa87444
- SHA512
  
  d77298786dba5e2e6f33738d76bbee7ed5741fa52f9b0d34f5a755d54fb003b0503fc84af250965a9a1358a2b01ee0d0d1844c1fe5aa10f0b5f1702ed78f6b91
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fm:RqKvb0CYJ973e+eKZOf7fm
Score

9^/10

discovery ransomware
- Renames multiple (2955) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware