c414e9160df21e4d8211e5ce0f3c3e4184a4a2d1b55a03a2f31c21905bcffed3 | Triage

Sharing

General

Target

c414e9160df21e4d8211e5ce0f3c3e4184a4a2d1b55a03a2f31c21905bcffed3
Size

89KB
Sample

240810-cvhs9s1hml
MD5

32efe721545dbcf85c67759104d0f58e
SHA1

d36509648ac8a8eca3a38bba507b27155b920c56
SHA256

c414e9160df21e4d8211e5ce0f3c3e4184a4a2d1b55a03a2f31c21905bcffed3
SHA512

53a8f0a52dd28b8b55329f172109ddf0880556ef75428637e2f9658bca8af79b68699598485b2b235b47ac3091a3cb1b05658e225c631cafaedd08027db520a1
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWifP:6e7WpMaxeb0CYJ97lEYNR73e+eBSWifP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c414e9160df21e4d8211e5ce0f3c3e4184a4a2d1b55a03a2f31c21905bcffed3
- Size
  
  89KB
- MD5
  
  32efe721545dbcf85c67759104d0f58e
- SHA1
  
  d36509648ac8a8eca3a38bba507b27155b920c56
- SHA256
  
  c414e9160df21e4d8211e5ce0f3c3e4184a4a2d1b55a03a2f31c21905bcffed3
- SHA512
  
  53a8f0a52dd28b8b55329f172109ddf0880556ef75428637e2f9658bca8af79b68699598485b2b235b47ac3091a3cb1b05658e225c631cafaedd08027db520a1
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWifP:6e7WpMaxeb0CYJ97lEYNR73e+eBSWifP
Score

9^/10

discovery ransomware
- Renames multiple (3434) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware