16b97c3324633740036df70b8ce687bc227dda65288bc404152d43aa4a5226f5 | Triage

Sharing

General

Target

16b97c3324633740036df70b8ce687bc227dda65288bc404152d43aa4a5226f5
Size

37KB
Sample

240810-xsr95stbnq
MD5

155e2c01b64201fa68a3fd094d2f0741
SHA1

6b4da082998c289768019eb4b7a7df1e91b2fb35
SHA256

16b97c3324633740036df70b8ce687bc227dda65288bc404152d43aa4a5226f5
SHA512

8897ad719ce3d3669fce576d85146fd7d5cdc8f7f225508702702b11cea2da3e217225ee7dcde54d18e5a7647633b2221ffbb0462b9c54fc08b6732573972c69
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxje6OMmy6OMmIkU:yBs7Br5xjL8AgA71Fbhv/Fzzwz0bNs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  16b97c3324633740036df70b8ce687bc227dda65288bc404152d43aa4a5226f5
- Size
  
  37KB
- MD5
  
  155e2c01b64201fa68a3fd094d2f0741
- SHA1
  
  6b4da082998c289768019eb4b7a7df1e91b2fb35
- SHA256
  
  16b97c3324633740036df70b8ce687bc227dda65288bc404152d43aa4a5226f5
- SHA512
  
  8897ad719ce3d3669fce576d85146fd7d5cdc8f7f225508702702b11cea2da3e217225ee7dcde54d18e5a7647633b2221ffbb0462b9c54fc08b6732573972c69
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxje6OMmy6OMmIkU:yBs7Br5xjL8AgA71Fbhv/Fzzwz0bNs
Score

9^/10

discovery ransomware
- Renames multiple (1035) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware