49f9f2b311ac723147121eb717fb998779674257791e2bbc871cbd3c458adcfc | Triage

Sharing

General

Target

49f9f2b311ac723147121eb717fb998779674257791e2bbc871cbd3c458adcfc
Size

198KB
Sample

240810-z4j41ssfna
MD5

b8e0f9f97e599763a48745dafc5c7e23
SHA1

90cbcc80926653fdcf30d15f66487b6b9a3a4b85
SHA256

49f9f2b311ac723147121eb717fb998779674257791e2bbc871cbd3c458adcfc
SHA512

926bc238d85a8ffd5f471444183d6bab0cc69204433eb29b3695b338964180c4f3017479e5dd5e5446f41f24957adc8fa039b952c1dba4a777ab7ab3a93b647d
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkQ:RqKB+tOkWKR0iJ0lTzkQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  49f9f2b311ac723147121eb717fb998779674257791e2bbc871cbd3c458adcfc
- Size
  
  198KB
- MD5
  
  b8e0f9f97e599763a48745dafc5c7e23
- SHA1
  
  90cbcc80926653fdcf30d15f66487b6b9a3a4b85
- SHA256
  
  49f9f2b311ac723147121eb717fb998779674257791e2bbc871cbd3c458adcfc
- SHA512
  
  926bc238d85a8ffd5f471444183d6bab0cc69204433eb29b3695b338964180c4f3017479e5dd5e5446f41f24957adc8fa039b952c1dba4a777ab7ab3a93b647d
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkQ:RqKB+tOkWKR0iJ0lTzkQ
Score

9^/10

discovery ransomware
- Renames multiple (3319) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware