0a3c950fe8f77b68b8b7fac97b51df538c18c2930d17908fccaf5a31869794b4 | Triage

Sharing

General

Target

0a3c950fe8f77b68b8b7fac97b51df538c18c2930d17908fccaf5a31869794b4
Size

53KB
Sample

240809-w6gvwstfpr
MD5

5009ebe1b4fd483a81e18cba552c3996
SHA1

a2a5adad76f56871d0bdd8e3740e34e0f8fabd81
SHA256

0a3c950fe8f77b68b8b7fac97b51df538c18c2930d17908fccaf5a31869794b4
SHA512

0956dd15da983c2872c4489e1f7c92f2c25008e5a8b2f79824765d556aae02bcf781d06d056901e4697e7ea92ed6293e8b06bbd8a8f5a4b60fc4311123a87247
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJ5uv4Luv4Ve2/Qdme2/QdAe2F:W7ZppApyVyjVy7bJ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0a3c950fe8f77b68b8b7fac97b51df538c18c2930d17908fccaf5a31869794b4
- Size
  
  53KB
- MD5
  
  5009ebe1b4fd483a81e18cba552c3996
- SHA1
  
  a2a5adad76f56871d0bdd8e3740e34e0f8fabd81
- SHA256
  
  0a3c950fe8f77b68b8b7fac97b51df538c18c2930d17908fccaf5a31869794b4
- SHA512
  
  0956dd15da983c2872c4489e1f7c92f2c25008e5a8b2f79824765d556aae02bcf781d06d056901e4697e7ea92ed6293e8b06bbd8a8f5a4b60fc4311123a87247
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJ5uv4Luv4Ve2/Qdme2/QdAe2F:W7ZppApyVyjVy7bJ
Score

9^/10

discovery ransomware
- Renames multiple (926) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware