2bf895d4dd508112533af05a6165f4513f82c558ea62ba33f5fb0fde4eb39037 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2bf895d4dd508112533af05a6165f4513f82c558ea62ba33f5fb0fde4eb39037
Size

97KB
Sample

240806-ysvwpssfkc
MD5

b1daf4a2d9eefd172eba467175deaeca
SHA1

bbdfb29f74f9efe7e5f3a1d8130432d3c5550295
SHA256

2bf895d4dd508112533af05a6165f4513f82c558ea62ba33f5fb0fde4eb39037
SHA512

77d08b525605992da1febba0354cdbc902498cfc7fb94758fa6e545f595d276bae8a3ec361f9508dbd052e6f321ca5febfaa83b9ba39fbe08324a4856748f4dd
SSDEEP

3072:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9ih2x2m:RqlIyFESWu0SWu86jYh2x2m

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2bf895d4dd508112533af05a6165f4513f82c558ea62ba33f5fb0fde4eb39037
- Size
  
  97KB
- MD5
  
  b1daf4a2d9eefd172eba467175deaeca
- SHA1
  
  bbdfb29f74f9efe7e5f3a1d8130432d3c5550295
- SHA256
  
  2bf895d4dd508112533af05a6165f4513f82c558ea62ba33f5fb0fde4eb39037
- SHA512
  
  77d08b525605992da1febba0354cdbc902498cfc7fb94758fa6e545f595d276bae8a3ec361f9508dbd052e6f321ca5febfaa83b9ba39fbe08324a4856748f4dd
- SSDEEP
  
  3072:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9ih2x2m:RqlIyFESWu0SWu86jYh2x2m
Score

9^/10

discovery ransomware
- Renames multiple (3681) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware