9563c6a930e670eb46d222ac696475b0f739aa3585acf126c2f4df8323458a7a | Triage

Sharing

General

Target

9563c6a930e670eb46d222ac696475b0f739aa3585acf126c2f4df8323458a7a
Size

39KB
Sample

240727-bbglesyhqb
MD5

5f4f797b57b0afbb1912f493fe6b0a18
SHA1

ef33f7080edb91f74451106a5e68b1a2c3ac4009
SHA256

9563c6a930e670eb46d222ac696475b0f739aa3585acf126c2f4df8323458a7a
SHA512

4ff226ccb82d8f9bbf08cd874b0122f3463bba3b4ff54b369c6117427c73a15dd2a58b4fd78a3f04f8fd2923780c806a3e2821ec300f93d3672f79bc43b5f256
SSDEEP

384:yBs7Br5xjL8AgA71FbhvRBs+HyABs+Hy/:/7BlpQpARFbhm

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9563c6a930e670eb46d222ac696475b0f739aa3585acf126c2f4df8323458a7a
- Size
  
  39KB
- MD5
  
  5f4f797b57b0afbb1912f493fe6b0a18
- SHA1
  
  ef33f7080edb91f74451106a5e68b1a2c3ac4009
- SHA256
  
  9563c6a930e670eb46d222ac696475b0f739aa3585acf126c2f4df8323458a7a
- SHA512
  
  4ff226ccb82d8f9bbf08cd874b0122f3463bba3b4ff54b369c6117427c73a15dd2a58b4fd78a3f04f8fd2923780c806a3e2821ec300f93d3672f79bc43b5f256
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvRBs+HyABs+Hy/:/7BlpQpARFbhm
Score

9^/10

discovery ransomware
- Renames multiple (474) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware