652903070b9d3e445e03c41e223d514118f3a70b0cecd77956a1aaea11ca5cb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

652903070b9d3e445e03c41e223d514118f3a70b0cecd77956a1aaea11ca5cb0
Size

51KB
Sample

240808-12qpfs1ckk
MD5

ea096236a4050c6ebdab59d437a0378b
SHA1

ec4988147782b0519cf848e48c1e0f6a3dfb8c93
SHA256

652903070b9d3e445e03c41e223d514118f3a70b0cecd77956a1aaea11ca5cb0
SHA512

da5e0ee2e4fbbada1e65a9441a45705954bbea53f7edef1c805dc63814c475195a462cb816990e0a6081a59d9d118a58346e9991dcb29681e66719c27b0e1167
SSDEEP

1536:W7ZppApBULcfpHLcfpyDaZ+KNKnF3KNKnFa:6pWpBwchcwDBKNKnF3KNKnFa

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  652903070b9d3e445e03c41e223d514118f3a70b0cecd77956a1aaea11ca5cb0
- Size
  
  51KB
- MD5
  
  ea096236a4050c6ebdab59d437a0378b
- SHA1
  
  ec4988147782b0519cf848e48c1e0f6a3dfb8c93
- SHA256
  
  652903070b9d3e445e03c41e223d514118f3a70b0cecd77956a1aaea11ca5cb0
- SHA512
  
  da5e0ee2e4fbbada1e65a9441a45705954bbea53f7edef1c805dc63814c475195a462cb816990e0a6081a59d9d118a58346e9991dcb29681e66719c27b0e1167
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyDaZ+KNKnF3KNKnFa:6pWpBwchcwDBKNKnF3KNKnFa
Score

9^/10

discovery ransomware
- Renames multiple (1179) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware