bfedd6f6a81bf168279be58e4e6ecc2bad1d061311a5b27ecca320bc31d31ac8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfedd6f6a81bf168279be58e4e6ecc2bad1d061311a5b27ecca320bc31d31ac8
Size

38KB
Sample

240810-clq4aa1dqm
MD5

61003f9aba6a4bc8753e269a1f698e66
SHA1

4ad0d83a558719b6fdc10d1d19d2abb1d1b26e7e
SHA256

bfedd6f6a81bf168279be58e4e6ecc2bad1d061311a5b27ecca320bc31d31ac8
SHA512

deffe1b1f2b7c54f772a5b13219d678d3bcd8771747923bfafe6147d394ebadf021e5f7ba338ca0f8aaef55430d0f14665cf794d06184167e733f874ecb1c5a6
SSDEEP

768:W7Blp2sspARFbhIJOE7Pf2hw7F1JOE7Pf2hw7F7:W7Z2sspApIE2n8MnE2n8Mp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  bfedd6f6a81bf168279be58e4e6ecc2bad1d061311a5b27ecca320bc31d31ac8
- Size
  
  38KB
- MD5
  
  61003f9aba6a4bc8753e269a1f698e66
- SHA1
  
  4ad0d83a558719b6fdc10d1d19d2abb1d1b26e7e
- SHA256
  
  bfedd6f6a81bf168279be58e4e6ecc2bad1d061311a5b27ecca320bc31d31ac8
- SHA512
  
  deffe1b1f2b7c54f772a5b13219d678d3bcd8771747923bfafe6147d394ebadf021e5f7ba338ca0f8aaef55430d0f14665cf794d06184167e733f874ecb1c5a6
- SSDEEP
  
  768:W7Blp2sspARFbhIJOE7Pf2hw7F1JOE7Pf2hw7F7:W7Z2sspApIE2n8MnE2n8Mp
Score

9^/10

discovery ransomware
- Renames multiple (3758) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware