df5638611203c724018721fdfb920d7c86b2a6c1160b16a25c7a1c9946fb219c | Triage

Sharing

General

Target

df5638611203c724018721fdfb920d7c86b2a6c1160b16a25c7a1c9946fb219c
Size

50KB
Sample

240811-ds5exswhjf
MD5

98946023715e02a393611b0f80943a13
SHA1

5f669019f27a3f9614337550a82f8303163c82cf
SHA256

df5638611203c724018721fdfb920d7c86b2a6c1160b16a25c7a1c9946fb219c
SHA512

22283f868b03255c0c2aa02c4015566f4b5a53e6531098bc0c43ff438bfa6732785125da432fbe7b2b2c3d81af6a5d081329fec29c970be8c3137485c69fe178
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG6VqDdP:/7BlpQpARFbhq1KtGFG6VQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  df5638611203c724018721fdfb920d7c86b2a6c1160b16a25c7a1c9946fb219c
- Size
  
  50KB
- MD5
  
  98946023715e02a393611b0f80943a13
- SHA1
  
  5f669019f27a3f9614337550a82f8303163c82cf
- SHA256
  
  df5638611203c724018721fdfb920d7c86b2a6c1160b16a25c7a1c9946fb219c
- SHA512
  
  22283f868b03255c0c2aa02c4015566f4b5a53e6531098bc0c43ff438bfa6732785125da432fbe7b2b2c3d81af6a5d081329fec29c970be8c3137485c69fe178
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG6VqDdP:/7BlpQpARFbhq1KtGFG6VQ
Score

9^/10

discovery ransomware
- Renames multiple (3991) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware