aaa288dfe4b0f842d875aa290e345493c46f9219d23e880047bfd335c0874d39 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aaa288dfe4b0f842d875aa290e345493c46f9219d23e880047bfd335c0874d39
Size

32KB
Sample

240807-b4w7ksxcnm
MD5

d69254ff1367e38163a0e60b0736e20a
SHA1

3ea7998e220a958d4ab485dbd99b642995d03605
SHA256

aaa288dfe4b0f842d875aa290e345493c46f9219d23e880047bfd335c0874d39
SHA512

4ca75281b7098b5a7ffad7ac4d53386f5c7f574737a55eb2f7d38acf83bbadd55f50a1a219f29e3183ae150522092d0dbcb7339fb7ee22d046faf7674364e89b
SSDEEP

192:tACUADIY0Br5xjL/VA7AgAQmP1oynLb22vn+XfIQIQtO7QZnrk5VBFZnrk5VBF:GBt7Br5xjL9A7AgA71Fbhvn+9FQugjgh

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  aaa288dfe4b0f842d875aa290e345493c46f9219d23e880047bfd335c0874d39
- Size
  
  32KB
- MD5
  
  d69254ff1367e38163a0e60b0736e20a
- SHA1
  
  3ea7998e220a958d4ab485dbd99b642995d03605
- SHA256
  
  aaa288dfe4b0f842d875aa290e345493c46f9219d23e880047bfd335c0874d39
- SHA512
  
  4ca75281b7098b5a7ffad7ac4d53386f5c7f574737a55eb2f7d38acf83bbadd55f50a1a219f29e3183ae150522092d0dbcb7339fb7ee22d046faf7674364e89b
- SSDEEP
  
  192:tACUADIY0Br5xjL/VA7AgAQmP1oynLb22vn+XfIQIQtO7QZnrk5VBFZnrk5VBF:GBt7Br5xjL9A7AgA71Fbhvn+9FQugjgh
Score

9^/10

discovery ransomware
- Renames multiple (1147) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware