530c4de1f774d4f9e9821d51a36226efb42abc8f5047a5a4d55e742d1d7e76e7 | Triage

Sharing

General

Target

530c4de1f774d4f9e9821d51a36226efb42abc8f5047a5a4d55e742d1d7e76e7
Size

58KB
Sample

240809-z9wp1azcql
MD5

c77202ccfb27f9f21976521f19f09fd2
SHA1

4504de40346cc111292744be84872d9849d99fd8
SHA256

530c4de1f774d4f9e9821d51a36226efb42abc8f5047a5a4d55e742d1d7e76e7
SHA512

84ea538acf621534c6dae59419273ae008630ea64503c3f45132a35dbc639366b9621b8422dd30126d69a8a0d79874d45af19071e0ca1794cc84f21d1b2ab9ab
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/K1p:W7ZppApBULcfpHLcfpX2/Nw/NwmxP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  530c4de1f774d4f9e9821d51a36226efb42abc8f5047a5a4d55e742d1d7e76e7
- Size
  
  58KB
- MD5
  
  c77202ccfb27f9f21976521f19f09fd2
- SHA1
  
  4504de40346cc111292744be84872d9849d99fd8
- SHA256
  
  530c4de1f774d4f9e9821d51a36226efb42abc8f5047a5a4d55e742d1d7e76e7
- SHA512
  
  84ea538acf621534c6dae59419273ae008630ea64503c3f45132a35dbc639366b9621b8422dd30126d69a8a0d79874d45af19071e0ca1794cc84f21d1b2ab9ab
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfpVF/MF/3Nw/Nwk0cEMdV8IEMdV85/K1p:W7ZppApBULcfpHLcfpX2/Nw/NwmxP
Score

9^/10

discovery ransomware
- Renames multiple (3792) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware