2f8956cfa071807c3d718cd3c47aa688af600543995446b59c1b77b31a0e4270 | Triage

Sharing

General

Target

2f8956cfa071807c3d718cd3c47aa688af600543995446b59c1b77b31a0e4270
Size

45KB
Sample

240809-yrw3da1ere
MD5

93958f6371dec5583dd2b15feb9b3a45
SHA1

18c47bae7bd2349e857eeb84e30c14f7bf0c9447
SHA256

2f8956cfa071807c3d718cd3c47aa688af600543995446b59c1b77b31a0e4270
SHA512

d2b0b494b417512c453882ea421e4be6ea7b049b7f8fb513f170ebb6620512a8d1778941b6d40c17e7a0a18a6b0b9524c9c2a0e9d6d65c8234ef9eb5663942b5
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLLeUe9:W7ZppApBULcfpHLcfpyDyeUe9

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2f8956cfa071807c3d718cd3c47aa688af600543995446b59c1b77b31a0e4270
- Size
  
  45KB
- MD5
  
  93958f6371dec5583dd2b15feb9b3a45
- SHA1
  
  18c47bae7bd2349e857eeb84e30c14f7bf0c9447
- SHA256
  
  2f8956cfa071807c3d718cd3c47aa688af600543995446b59c1b77b31a0e4270
- SHA512
  
  d2b0b494b417512c453882ea421e4be6ea7b049b7f8fb513f170ebb6620512a8d1778941b6d40c17e7a0a18a6b0b9524c9c2a0e9d6d65c8234ef9eb5663942b5
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLLeUe9:W7ZppApBULcfpHLcfpyDyeUe9
Score

9^/10

discovery ransomware
- Renames multiple (1025) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware