4f3ca29860d93de9e8854f3a731932d103197f0991423375caf8c2528c64eca3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f3ca29860d93de9e8854f3a731932d103197f0991423375caf8c2528c64eca3
Size

39KB
Sample

240806-1g5ymsveqb
MD5

29a05459278f9638654038474940363f
SHA1

507e6468425ac399b522e44b395f2f98c52066c8
SHA256

4f3ca29860d93de9e8854f3a731932d103197f0991423375caf8c2528c64eca3
SHA512

cc6f0993bfcef54164e326707e43d5d376778231755540dc7766d6f64ecddb58820dc6103ab9dd0ba95fab3f4a9e2c871f0a555b60e8063895535cc391cc9cf4
SSDEEP

384:yBs7Br5xjL8AgA71FbhvtzyKbNzzyKbNMQSAidWQSAidc:/7BlpQpARFbh1WK9WK+QFidWQFidc

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4f3ca29860d93de9e8854f3a731932d103197f0991423375caf8c2528c64eca3
- Size
  
  39KB
- MD5
  
  29a05459278f9638654038474940363f
- SHA1
  
  507e6468425ac399b522e44b395f2f98c52066c8
- SHA256
  
  4f3ca29860d93de9e8854f3a731932d103197f0991423375caf8c2528c64eca3
- SHA512
  
  cc6f0993bfcef54164e326707e43d5d376778231755540dc7766d6f64ecddb58820dc6103ab9dd0ba95fab3f4a9e2c871f0a555b60e8063895535cc391cc9cf4
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvtzyKbNzzyKbNMQSAidWQSAidc:/7BlpQpARFbh1WK9WK+QFidWQFidc
Score

9^/10

discovery ransomware
- Renames multiple (4058) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware