40fed519c1a8f266a3b247ac0a4bd77b75e7dc3571e7337a21825962b2976ceb | Triage

Sharing

General

Target

40fed519c1a8f266a3b247ac0a4bd77b75e7dc3571e7337a21825962b2976ceb
Size

41KB
Sample

240801-2knn7szdnm
MD5

de1d6540340d73ca3dd2cdf5c5da87bd
SHA1

072dee09e547d761f4212ac615dc6c847e79926b
SHA256

40fed519c1a8f266a3b247ac0a4bd77b75e7dc3571e7337a21825962b2976ceb
SHA512

7a6ef530e1d2d335e887ea0c1e8baab4c933c78a69de58ba1f7508a1ebd9168f70a58bc7791628083581edf7f73d8d49d065ad4539207e4d6e222a2ab266846d
SSDEEP

384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBpR42L5FgAytBpy6Hc6HzK:W7BlpppARFbhjbhg42LcfpR42LcfpybH

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  40fed519c1a8f266a3b247ac0a4bd77b75e7dc3571e7337a21825962b2976ceb
- Size
  
  41KB
- MD5
  
  de1d6540340d73ca3dd2cdf5c5da87bd
- SHA1
  
  072dee09e547d761f4212ac615dc6c847e79926b
- SHA256
  
  40fed519c1a8f266a3b247ac0a4bd77b75e7dc3571e7337a21825962b2976ceb
- SHA512
  
  7a6ef530e1d2d335e887ea0c1e8baab4c933c78a69de58ba1f7508a1ebd9168f70a58bc7791628083581edf7f73d8d49d065ad4539207e4d6e222a2ab266846d
- SSDEEP
  
  384:GBt7Br5xjL9AgA71Fbhv7bhvo42L5FgAytBpR42L5FgAytBpy6Hc6HzK:W7BlpppARFbhjbhg42LcfpR42LcfpybH
Score

9^/10

discovery ransomware
- Renames multiple (3840) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware