80f1882fbf7d930a5a069010a5adc26c568b5db9e8d9a7368bf10139464b5bb2 | Triage

Sharing

General

Target

80f1882fbf7d930a5a069010a5adc26c568b5db9e8d9a7368bf10139464b5bb2
Size

77KB
Sample

240809-3fmrsavcjp
MD5

c294311e04c7aa4be1a0ae4540ac2a0e
SHA1

606bdc962865ca273d6257e6f2b21c132e8b4839
SHA256

80f1882fbf7d930a5a069010a5adc26c568b5db9e8d9a7368bf10139464b5bb2
SHA512

0cb3ba216af3f63e3a2e9d6dc32566829952ca3d06558f67c9e37905383a6bd4227b310dd1f1eed22ee923dea51c6b8aafad3690a9498f014610c8e978667b1c
SSDEEP

384:yBs7Br5xjL8AgA71FbhvJUfWGUfHjtmjtd5NaMR5NaBQNNXiB:/7BlpQpARFbhiWb8naOnaBGNXiB

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  80f1882fbf7d930a5a069010a5adc26c568b5db9e8d9a7368bf10139464b5bb2
- Size
  
  77KB
- MD5
  
  c294311e04c7aa4be1a0ae4540ac2a0e
- SHA1
  
  606bdc962865ca273d6257e6f2b21c132e8b4839
- SHA256
  
  80f1882fbf7d930a5a069010a5adc26c568b5db9e8d9a7368bf10139464b5bb2
- SHA512
  
  0cb3ba216af3f63e3a2e9d6dc32566829952ca3d06558f67c9e37905383a6bd4227b310dd1f1eed22ee923dea51c6b8aafad3690a9498f014610c8e978667b1c
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvJUfWGUfHjtmjtd5NaMR5NaBQNNXiB:/7BlpQpARFbhiWb8naOnaBGNXiB
Score

9^/10

discovery ransomware
- Renames multiple (3684) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware