b010c49025760a8f9b04f2159b261b958c37dc71f4ec72926f1a0d3211ebf812 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b010c49025760a8f9b04f2159b261b958c37dc71f4ec72926f1a0d3211ebf812
Size

103KB
Sample

240810-btpdzszalm
MD5

3c37fa0a09d5c3aba87a6b7ae35b4200
SHA1

8c6af0ba1fc347325afa73fb74485f3ea57dea67
SHA256

b010c49025760a8f9b04f2159b261b958c37dc71f4ec72926f1a0d3211ebf812
SHA512

f3bb405cd1b3bcd58d0974794f043a097ee274a9d84676ea72090d5b7933cc1d8c2d7883d770542e75728989153bf3063644db1a5cb2d79bddfa47265da4fa60
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaSD8:RqKvb0CYJ973e+eKZ0VA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b010c49025760a8f9b04f2159b261b958c37dc71f4ec72926f1a0d3211ebf812
- Size
  
  103KB
- MD5
  
  3c37fa0a09d5c3aba87a6b7ae35b4200
- SHA1
  
  8c6af0ba1fc347325afa73fb74485f3ea57dea67
- SHA256
  
  b010c49025760a8f9b04f2159b261b958c37dc71f4ec72926f1a0d3211ebf812
- SHA512
  
  f3bb405cd1b3bcd58d0974794f043a097ee274a9d84676ea72090d5b7933cc1d8c2d7883d770542e75728989153bf3063644db1a5cb2d79bddfa47265da4fa60
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXaSD8:RqKvb0CYJ973e+eKZ0VA
Score

9^/10

discovery ransomware
- Renames multiple (3516) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware