296e9d6d6a5a751f6e6e5d8a7867ec62949b8ee22d4f0b5321e0b21d6be05aaf | Triage

Sharing

General

Target

296e9d6d6a5a751f6e6e5d8a7867ec62949b8ee22d4f0b5321e0b21d6be05aaf
Size

102KB
Sample

240808-ye6faaybrl
MD5

a03a6867ada809eaac20f3500d6f8d96
SHA1

ac1b6235eb0e638fdbafc2a9aa3094d6775757a4
SHA256

296e9d6d6a5a751f6e6e5d8a7867ec62949b8ee22d4f0b5321e0b21d6be05aaf
SHA512

250f0734f634f92e59f0568655698cc2b0659ed5aefbe3c62f80812322a2330409d571ed8aac10efe09a2409450d321fa8bc1cb22a8be1eb96273901c2900bda
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fS:RqKvb0CYJ973e+eKZOf7fS

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  296e9d6d6a5a751f6e6e5d8a7867ec62949b8ee22d4f0b5321e0b21d6be05aaf
- Size
  
  102KB
- MD5
  
  a03a6867ada809eaac20f3500d6f8d96
- SHA1
  
  ac1b6235eb0e638fdbafc2a9aa3094d6775757a4
- SHA256
  
  296e9d6d6a5a751f6e6e5d8a7867ec62949b8ee22d4f0b5321e0b21d6be05aaf
- SHA512
  
  250f0734f634f92e59f0568655698cc2b0659ed5aefbe3c62f80812322a2330409d571ed8aac10efe09a2409450d321fa8bc1cb22a8be1eb96273901c2900bda
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZOf7fS:RqKvb0CYJ973e+eKZOf7fS
Score

9^/10

discovery ransomware
- Renames multiple (751) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware