f5b32c746be048b4409b4509d65c519b75af66a0467a2e085d2eba6b9d6481c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5b32c746be048b4409b4509d65c519b75af66a0467a2e085d2eba6b9d6481c0
Size

90KB
Sample

240812-ev2x9avelk
MD5

a2a75d9b81af579390e9560ea0711eb1
SHA1

3395eb4f6b55e369dfd6064f4c0057f77ae07eeb
SHA256

f5b32c746be048b4409b4509d65c519b75af66a0467a2e085d2eba6b9d6481c0
SHA512

a0431b08ffe051876dbd59f59646c6db4887ee2472bdf7f766c29bdecb00c2f7673a7827a67b11ac13bf175326a3220fb31f24c2de3dcc4c5a21c1e33d4453c8
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhA:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsR

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f5b32c746be048b4409b4509d65c519b75af66a0467a2e085d2eba6b9d6481c0
- Size
  
  90KB
- MD5
  
  a2a75d9b81af579390e9560ea0711eb1
- SHA1
  
  3395eb4f6b55e369dfd6064f4c0057f77ae07eeb
- SHA256
  
  f5b32c746be048b4409b4509d65c519b75af66a0467a2e085d2eba6b9d6481c0
- SHA512
  
  a0431b08ffe051876dbd59f59646c6db4887ee2472bdf7f766c29bdecb00c2f7673a7827a67b11ac13bf175326a3220fb31f24c2de3dcc4c5a21c1e33d4453c8
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhA:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsR
Score

9^/10

discovery ransomware
- Renames multiple (837) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware