6d79c7b077c21e4786f0da8be2b2a141c7a062321161064fbbaaf12e9d7befd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d79c7b077c21e4786f0da8be2b2a141c7a062321161064fbbaaf12e9d7befd0
Size

49KB
Sample

240807-25d1hawbrp
MD5

29f1307d43ae0d00c3676f9b64175921
SHA1

67e63e8f88918d870d48cd8691f4efa470335796
SHA256

6d79c7b077c21e4786f0da8be2b2a141c7a062321161064fbbaaf12e9d7befd0
SHA512

990ae9d78f299594f307437cffa3565dcaebcf9f169b594de7fab99a80aa2e0ec76101c01c587512ea61bfa4737e4b5967d79c69af1c87283cce49a040d504ca
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJr4S04SCzwzwl/Nl/Y:/7BlpQpARFbhq1KX101GIGjY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6d79c7b077c21e4786f0da8be2b2a141c7a062321161064fbbaaf12e9d7befd0
- Size
  
  49KB
- MD5
  
  29f1307d43ae0d00c3676f9b64175921
- SHA1
  
  67e63e8f88918d870d48cd8691f4efa470335796
- SHA256
  
  6d79c7b077c21e4786f0da8be2b2a141c7a062321161064fbbaaf12e9d7befd0
- SHA512
  
  990ae9d78f299594f307437cffa3565dcaebcf9f169b594de7fab99a80aa2e0ec76101c01c587512ea61bfa4737e4b5967d79c69af1c87283cce49a040d504ca
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJr4S04SCzwzwl/Nl/Y:/7BlpQpARFbhq1KX101GIGjY
Score

9^/10

discovery ransomware
- Renames multiple (3733) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware