c05afe24a3bba26989c04efcc5f69bc3f9f9168b3bf7ddf4c463a78430159a7c | Triage

Sharing

General

Target

c05afe24a3bba26989c04efcc5f69bc3f9f9168b3bf7ddf4c463a78430159a7c
Size

102KB
Sample

240810-cl3gba1drr
MD5

5912acf976e0d1ae06a6b28ca79f49ba
SHA1

8882dc881777cbe27c9eb2a92eef9401118342b1
SHA256

c05afe24a3bba26989c04efcc5f69bc3f9f9168b3bf7ddf4c463a78430159a7c
SHA512

5e15fd4dba5e3ce6f4ceca23fa1123cdecc305c8eca29af8f3d969f064ee4f9f9ea49ea409acd8920f8c9917b50c63522616a9ee773f904b623e3e3992a2267b
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXa3v:RqKvb0CYJ973e+eKZ0V6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c05afe24a3bba26989c04efcc5f69bc3f9f9168b3bf7ddf4c463a78430159a7c
- Size
  
  102KB
- MD5
  
  5912acf976e0d1ae06a6b28ca79f49ba
- SHA1
  
  8882dc881777cbe27c9eb2a92eef9401118342b1
- SHA256
  
  c05afe24a3bba26989c04efcc5f69bc3f9f9168b3bf7ddf4c463a78430159a7c
- SHA512
  
  5e15fd4dba5e3ce6f4ceca23fa1123cdecc305c8eca29af8f3d969f064ee4f9f9ea49ea409acd8920f8c9917b50c63522616a9ee773f904b623e3e3992a2267b
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZ0VXa3v:RqKvb0CYJ973e+eKZ0V6
Score

9^/10

discovery ransomware
- Renames multiple (3446) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware