29f0d3e21b92fc7b13c7162b49c2752edd01730e33e09c1ceb1b1af6886abc57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29f0d3e21b92fc7b13c7162b49c2752edd01730e33e09c1ceb1b1af6886abc57
Size

45KB
Sample

240808-yfveeascnh
MD5

7a6b591712bcdbcf4fb06dd31bc140aa
SHA1

6688907051e105ec84f723cb257b7b152c6f55ed
SHA256

29f0d3e21b92fc7b13c7162b49c2752edd01730e33e09c1ceb1b1af6886abc57
SHA512

3dba4d8bbe679ecac7683b5dbaad4fde3ae7346d522e11c03370eee5aa7e1f4879156bad858ed9d7246e7e4a8e6fa5c91db3b3830b7e5db9aba9f593a24313e9
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBNQFrs0AqAJwO1AqAJwOfF2JouP2JouQw5A5b:W7BlpppARFbhHFoqAJwBqAJwRJofJoTL

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  29f0d3e21b92fc7b13c7162b49c2752edd01730e33e09c1ceb1b1af6886abc57
- Size
  
  45KB
- MD5
  
  7a6b591712bcdbcf4fb06dd31bc140aa
- SHA1
  
  6688907051e105ec84f723cb257b7b152c6f55ed
- SHA256
  
  29f0d3e21b92fc7b13c7162b49c2752edd01730e33e09c1ceb1b1af6886abc57
- SHA512
  
  3dba4d8bbe679ecac7683b5dbaad4fde3ae7346d522e11c03370eee5aa7e1f4879156bad858ed9d7246e7e4a8e6fa5c91db3b3830b7e5db9aba9f593a24313e9
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBNQFrs0AqAJwO1AqAJwOfF2JouP2JouQw5A5b:W7BlpppARFbhHFoqAJwBqAJwRJofJoTL
Score

9^/10

discovery ransomware
- Renames multiple (3770) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware