bbde321668fca5ccc0d3417b98d316e24087875e0fb9cbed09494d7ebfe9d3b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbde321668fca5ccc0d3417b98d316e24087875e0fb9cbed09494d7ebfe9d3b2
Size

34KB
Sample

240812-b31hlszajn
MD5

3cbfcff868699cc4d9ce72124e682739
SHA1

facfbf6f4e886f6343074865de32a2c1ef6b791e
SHA256

bbde321668fca5ccc0d3417b98d316e24087875e0fb9cbed09494d7ebfe9d3b2
SHA512

fe3561e133d519905eb21cfd6e7b52c5dfba912becd0b660ba3111e33048b430893d247492140da1b85473dab5e9c6fb8ee4368974fe345563ac109323907b1f
SSDEEP

192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPX3Hz2Hz38tOJtOb:GBt7Br5xjL7lAgA71Fbhvt3EiK

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  bbde321668fca5ccc0d3417b98d316e24087875e0fb9cbed09494d7ebfe9d3b2
- Size
  
  34KB
- MD5
  
  3cbfcff868699cc4d9ce72124e682739
- SHA1
  
  facfbf6f4e886f6343074865de32a2c1ef6b791e
- SHA256
  
  bbde321668fca5ccc0d3417b98d316e24087875e0fb9cbed09494d7ebfe9d3b2
- SHA512
  
  fe3561e133d519905eb21cfd6e7b52c5dfba912becd0b660ba3111e33048b430893d247492140da1b85473dab5e9c6fb8ee4368974fe345563ac109323907b1f
- SSDEEP
  
  192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPX3Hz2Hz38tOJtOb:GBt7Br5xjL7lAgA71Fbhvt3EiK
Score

9^/10

discovery ransomware
- Renames multiple (4119) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware