26ea040998510ee6bef3ab9fb2a4513388a18120efa8c37a2e6cba3bfc72e7f2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26ea040998510ee6bef3ab9fb2a4513388a18120efa8c37a2e6cba3bfc72e7f2
Size

36KB
Sample

240810-yg7fcsygrh
MD5

59d9dc9f55d9936024aa3255d53dab8a
SHA1

11576b60e804fd41688bc838a972bd1421c50457
SHA256

26ea040998510ee6bef3ab9fb2a4513388a18120efa8c37a2e6cba3bfc72e7f2
SHA512

3bfa2d599ea9ad1ddde8d18ae911811bf9794c3abdd7f174e355f5e2ddac1921f4bddab5bbc38f5a89d4fd310ee9dc62446bc26f50058e853775bde9782b73a9
SSDEEP

192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXpGeqc4SUqUGeqc4SUqR:GBt7Br5xjL7lAgA71Fbhvt3e4S04Sp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  26ea040998510ee6bef3ab9fb2a4513388a18120efa8c37a2e6cba3bfc72e7f2
- Size
  
  36KB
- MD5
  
  59d9dc9f55d9936024aa3255d53dab8a
- SHA1
  
  11576b60e804fd41688bc838a972bd1421c50457
- SHA256
  
  26ea040998510ee6bef3ab9fb2a4513388a18120efa8c37a2e6cba3bfc72e7f2
- SHA512
  
  3bfa2d599ea9ad1ddde8d18ae911811bf9794c3abdd7f174e355f5e2ddac1921f4bddab5bbc38f5a89d4fd310ee9dc62446bc26f50058e853775bde9782b73a9
- SSDEEP
  
  192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXpGeqc4SUqUGeqc4SUqR:GBt7Br5xjL7lAgA71Fbhvt3e4S04Sp
Score

9^/10

discovery ransomware
- Renames multiple (3945) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware