3b1df1e8842ba9decb8b4a3f22fd11c8cc87dfe7785bd83bf6edac58e00015a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b1df1e8842ba9decb8b4a3f22fd11c8cc87dfe7785bd83bf6edac58e00015a5
Size

37KB
Sample

240727-z3wresyhqp
MD5

78ec1c1dc5658a4f9f1007b9e43b9a10
SHA1

9dd84980e445cbffd5d6f467cefffbb3b8122962
SHA256

3b1df1e8842ba9decb8b4a3f22fd11c8cc87dfe7785bd83bf6edac58e00015a5
SHA512

f5c91c55da22263b6d738387f39b9867cb3ec8ef1d378b12b84d01db5654094224e6a5ad4a100dccf2870df411eb3c7ede4b3130a2337a78c26d04eb898adc78
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzHww5A5K:/7BlpQpARFbhNIX

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3b1df1e8842ba9decb8b4a3f22fd11c8cc87dfe7785bd83bf6edac58e00015a5
- Size
  
  37KB
- MD5
  
  78ec1c1dc5658a4f9f1007b9e43b9a10
- SHA1
  
  9dd84980e445cbffd5d6f467cefffbb3b8122962
- SHA256
  
  3b1df1e8842ba9decb8b4a3f22fd11c8cc87dfe7785bd83bf6edac58e00015a5
- SHA512
  
  f5c91c55da22263b6d738387f39b9867cb3ec8ef1d378b12b84d01db5654094224e6a5ad4a100dccf2870df411eb3c7ede4b3130a2337a78c26d04eb898adc78
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzHww5A5K:/7BlpQpARFbhNIX
Score

9^/10

discovery ransomware
- Renames multiple (472) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware