3687178a9848ea3721f8689ecc229201d9a821d18e795c9f53f3dd3a84adb5ac | Triage

Sharing

General

Target

3687178a9848ea3721f8689ecc229201d9a821d18e795c9f53f3dd3a84adb5ac
Size

473KB
Sample

240805-y7m5eaxdkp
MD5

a5f1a88de7c475e0b11e1deef7588666
SHA1

63c4417ed9b0c2f66aa8f820a25c4a8f0d977a47
SHA256

3687178a9848ea3721f8689ecc229201d9a821d18e795c9f53f3dd3a84adb5ac
SHA512

d8271f4067f33f3c6d8c119a882722307895b767c62c74d9febc3bb84f04163b2e0564e71b668b192e76c880aec826706e17b63c356b218132ccd3209e05d3e5
SSDEEP

6144:RqKPlJT2WFzu5Db7k6FLrLk/B+xhY3ClhiEiQhT+JgUEkBEk8ox3kEFytR:vrT2Wxudk6FLHk/B+xKClhiEn

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3687178a9848ea3721f8689ecc229201d9a821d18e795c9f53f3dd3a84adb5ac
- Size
  
  473KB
- MD5
  
  a5f1a88de7c475e0b11e1deef7588666
- SHA1
  
  63c4417ed9b0c2f66aa8f820a25c4a8f0d977a47
- SHA256
  
  3687178a9848ea3721f8689ecc229201d9a821d18e795c9f53f3dd3a84adb5ac
- SHA512
  
  d8271f4067f33f3c6d8c119a882722307895b767c62c74d9febc3bb84f04163b2e0564e71b668b192e76c880aec826706e17b63c356b218132ccd3209e05d3e5
- SSDEEP
  
  6144:RqKPlJT2WFzu5Db7k6FLrLk/B+xhY3ClhiEiQhT+JgUEkBEk8ox3kEFytR:vrT2Wxudk6FLHk/B+xKClhiEn
Score

9^/10

discovery ransomware
- Renames multiple (2108) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware