2d66808bd76ec5a03ce8ad205f8f38bb42ea853f0057646d48d8c8cb51cefb73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2d66808bd76ec5a03ce8ad205f8f38bb42ea853f0057646d48d8c8cb51cefb73
Size

46KB
Sample

240811-ylp2wavemm
MD5

b58b16aaee15d2ed0bf8d9a7c5458dea
SHA1

4dc914b02971891bc92cb4c12cef4ae96f747230
SHA256

2d66808bd76ec5a03ce8ad205f8f38bb42ea853f0057646d48d8c8cb51cefb73
SHA512

d03ce57166e307f5acff606f1b71a4e30e960572356b522a4fc8bf94756b16a53a4223db2ff8d11d9b267781c45e6b185dc4645b5870e0777dc61dcc75a1b754
SSDEEP

768:W7BlpppARFbhbt7Y7wTCnB/FKvTcFKvTz:W7ZppApJvTXvTz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2d66808bd76ec5a03ce8ad205f8f38bb42ea853f0057646d48d8c8cb51cefb73
- Size
  
  46KB
- MD5
  
  b58b16aaee15d2ed0bf8d9a7c5458dea
- SHA1
  
  4dc914b02971891bc92cb4c12cef4ae96f747230
- SHA256
  
  2d66808bd76ec5a03ce8ad205f8f38bb42ea853f0057646d48d8c8cb51cefb73
- SHA512
  
  d03ce57166e307f5acff606f1b71a4e30e960572356b522a4fc8bf94756b16a53a4223db2ff8d11d9b267781c45e6b185dc4645b5870e0777dc61dcc75a1b754
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCnB/FKvTcFKvTz:W7ZppApJvTXvTz
Score

9^/10

discovery ransomware
- Renames multiple (3928) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware