a67229ae69e6293ec90eebad2170d45ba0a113df4e89447544f3b7677c00241c | Triage

Sharing

General

Target

a67229ae69e6293ec90eebad2170d45ba0a113df4e89447544f3b7677c00241c
Size

68KB
Sample

240812-a5g9da1hlg
MD5

e006812a35736ab32b116583b216842e
SHA1

9a1b193a6b485a58a657d31c8fee05e3c9407a4d
SHA256

a67229ae69e6293ec90eebad2170d45ba0a113df4e89447544f3b7677c00241c
SHA512

5cf3e2c8c380d4edd6901e39df75d72214a1ac3c54da42d7427cef538a67532153e0477b086011bdfdef8b0c0de2702e1aca64da10448afec6355f7cddde79eb
SSDEEP

768:W7BlpppARFbhbt7Y7WBp9/Bp9S9dr8WbTr8WbV:W7ZppApRhS9f

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a67229ae69e6293ec90eebad2170d45ba0a113df4e89447544f3b7677c00241c
- Size
  
  68KB
- MD5
  
  e006812a35736ab32b116583b216842e
- SHA1
  
  9a1b193a6b485a58a657d31c8fee05e3c9407a4d
- SHA256
  
  a67229ae69e6293ec90eebad2170d45ba0a113df4e89447544f3b7677c00241c
- SHA512
  
  5cf3e2c8c380d4edd6901e39df75d72214a1ac3c54da42d7427cef538a67532153e0477b086011bdfdef8b0c0de2702e1aca64da10448afec6355f7cddde79eb
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7WBp9/Bp9S9dr8WbTr8WbV:W7ZppApRhS9f
Score

9^/10

discovery ransomware
- Renames multiple (649) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware