04fc3f0f6329e752af1c53cf4761b3dde41352918235253992a717cefa160eca | Triage

Sharing

General

Target

04fc3f0f6329e752af1c53cf4761b3dde41352918235253992a717cefa160eca
Size

57KB
Sample

240810-wymq6s1fkq
MD5

4f487a9421f5ed437282d652384aaea9
SHA1

eb831359f8b18fc55cbe3f4bdc8f519cc521088e
SHA256

04fc3f0f6329e752af1c53cf4761b3dde41352918235253992a717cefa160eca
SHA512

98ed997bd45eed1f5559e35fb8b51a62348e1e38ec57250b1dfd8705c0e40461f51686f4c831ab714ad43a88cacaca15c6e88b0dc163dc961f405611c96a495c
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/PMpMf1Dxp1Dxw:W7BlpppARFbhFAxC7ntkntV/kCHRw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  04fc3f0f6329e752af1c53cf4761b3dde41352918235253992a717cefa160eca
- Size
  
  57KB
- MD5
  
  4f487a9421f5ed437282d652384aaea9
- SHA1
  
  eb831359f8b18fc55cbe3f4bdc8f519cc521088e
- SHA256
  
  04fc3f0f6329e752af1c53cf4761b3dde41352918235253992a717cefa160eca
- SHA512
  
  98ed997bd45eed1f5559e35fb8b51a62348e1e38ec57250b1dfd8705c0e40461f51686f4c831ab714ad43a88cacaca15c6e88b0dc163dc961f405611c96a495c
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/PMpMf1Dxp1Dxw:W7BlpppARFbhFAxC7ntkntV/kCHRw
Score

9^/10

discovery ransomware
- Renames multiple (3800) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware