99c478eefa0594dc408bed7df5b352e7fb95a9aacf500c90eaadb7d5994deb29 | Triage

Sharing

General

Target

99c478eefa0594dc408bed7df5b352e7fb95a9aacf500c90eaadb7d5994deb29
Size

39KB
Sample

240813-2pdd2azgmb
MD5

4291beada56be21cd9aef90c9bf47b23
SHA1

d7739a0b851104ba7c72cc71fc0672c9a3eec03b
SHA256

99c478eefa0594dc408bed7df5b352e7fb95a9aacf500c90eaadb7d5994deb29
SHA512

37d2821585b78ddf04636d271a0b1aa5fa199b0a42ef94acdfe2355b1511f3145fd6e93d105f3609f4a99720780d35d0b67db8c57c179394d705134303a3fafa
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrSLmnsNw/Nw6gQ2QF:W7BlpppARFbhknrSLmsNw/Nw6gQ2QF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  99c478eefa0594dc408bed7df5b352e7fb95a9aacf500c90eaadb7d5994deb29
- Size
  
  39KB
- MD5
  
  4291beada56be21cd9aef90c9bf47b23
- SHA1
  
  d7739a0b851104ba7c72cc71fc0672c9a3eec03b
- SHA256
  
  99c478eefa0594dc408bed7df5b352e7fb95a9aacf500c90eaadb7d5994deb29
- SHA512
  
  37d2821585b78ddf04636d271a0b1aa5fa199b0a42ef94acdfe2355b1511f3145fd6e93d105f3609f4a99720780d35d0b67db8c57c179394d705134303a3fafa
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrSLmnsNw/Nw6gQ2QF:W7BlpppARFbhknrSLmsNw/Nw6gQ2QF
Score

9^/10

discovery ransomware
- Renames multiple (3766) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware