fcd97bfbd1782985ed9d8f7cbb55ffbf5840f2e6e03ee18723cb5863cc997f1b | Triage

Sharing

General

Target

fcd97bfbd1782985ed9d8f7cbb55ffbf5840f2e6e03ee18723cb5863cc997f1b
Size

48KB
Sample

240809-e4e5vazhje
MD5

8de5f75f6495d590ac9f8a22c32d8553
SHA1

91684f7c8eb76687110c80378b56c7379601735c
SHA256

fcd97bfbd1782985ed9d8f7cbb55ffbf5840f2e6e03ee18723cb5863cc997f1b
SHA512

2adfbe8557b11f3b3ea0822121e68527375b8a585870e1a96316f5daa4903136ec73d85a9f640bdd6188cc0658e67b78f6e8cec6d383f2c8bc67ea08eda7382e
SSDEEP

768:W7BlpppARFbhbt7Y7wTCg0hcM0hcOwARJCrAdJyxB1AXJyx7wARJCrAdJyxB1AX5:W7ZppApN0hcM0hcZ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  fcd97bfbd1782985ed9d8f7cbb55ffbf5840f2e6e03ee18723cb5863cc997f1b
- Size
  
  48KB
- MD5
  
  8de5f75f6495d590ac9f8a22c32d8553
- SHA1
  
  91684f7c8eb76687110c80378b56c7379601735c
- SHA256
  
  fcd97bfbd1782985ed9d8f7cbb55ffbf5840f2e6e03ee18723cb5863cc997f1b
- SHA512
  
  2adfbe8557b11f3b3ea0822121e68527375b8a585870e1a96316f5daa4903136ec73d85a9f640bdd6188cc0658e67b78f6e8cec6d383f2c8bc67ea08eda7382e
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCg0hcM0hcOwARJCrAdJyxB1AXJyx7wARJCrAdJyxB1AX5:W7ZppApN0hcM0hcZ
Score

9^/10

discovery ransomware
- Renames multiple (3819) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware