f96fe6c3040d1cea79b8c2dbbb24c7a09d29951fbcc21b35610dda6832993bca | Triage

Sharing

General

Target

f96fe6c3040d1cea79b8c2dbbb24c7a09d29951fbcc21b35610dda6832993bca
Size

178KB
Sample

240803-f1dy2syhla
MD5

00be57af1bdf2a6670b7205cd9bf04be
SHA1

bd9ed66823eca9ea4b527dd0b3e99d815ec0e96a
SHA256

f96fe6c3040d1cea79b8c2dbbb24c7a09d29951fbcc21b35610dda6832993bca
SHA512

997c0b41cc5a7f87b79829bfcf3a491d182d085fb01109191b855c8f6ed3629b84450331e5cf379df7310369f3792f3450a58b486e9fbd7f16ffc80c4493a793
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBgn/:RqKB+tOkWKR0iJ0Mn/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f96fe6c3040d1cea79b8c2dbbb24c7a09d29951fbcc21b35610dda6832993bca
- Size
  
  178KB
- MD5
  
  00be57af1bdf2a6670b7205cd9bf04be
- SHA1
  
  bd9ed66823eca9ea4b527dd0b3e99d815ec0e96a
- SHA256
  
  f96fe6c3040d1cea79b8c2dbbb24c7a09d29951fbcc21b35610dda6832993bca
- SHA512
  
  997c0b41cc5a7f87b79829bfcf3a491d182d085fb01109191b855c8f6ed3629b84450331e5cf379df7310369f3792f3450a58b486e9fbd7f16ffc80c4493a793
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBgn/:RqKB+tOkWKR0iJ0Mn/
Score

9^/10

discovery ransomware
- Renames multiple (3404) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware