13ed7b5736baeb4e5a5bb3c30ae890a125d30f1b9a098ecbf8bf478c5b5271a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13ed7b5736baeb4e5a5bb3c30ae890a125d30f1b9a098ecbf8bf478c5b5271a9
Size

54KB
Sample

240813-xazw9szenb
MD5

aa17836b55ca82214847fe42acea6e57
SHA1

2979acdd2d9324c0a8b8a54d5616aba3c1fe948f
SHA256

13ed7b5736baeb4e5a5bb3c30ae890a125d30f1b9a098ecbf8bf478c5b5271a9
SHA512

5f3aca058669e48c26fdded4bf7d8a879177bcf0817ec321d2f359120ce92f768acda86733454d51360b4ce98a5a66cc200800ba0142ee2aad72d6d7ed3fbfb2
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/2H2I+z0yH2I+z0x:W7BlpppARFbhFAxC7ntkntV/2c4yc4x

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  13ed7b5736baeb4e5a5bb3c30ae890a125d30f1b9a098ecbf8bf478c5b5271a9
- Size
  
  54KB
- MD5
  
  aa17836b55ca82214847fe42acea6e57
- SHA1
  
  2979acdd2d9324c0a8b8a54d5616aba3c1fe948f
- SHA256
  
  13ed7b5736baeb4e5a5bb3c30ae890a125d30f1b9a098ecbf8bf478c5b5271a9
- SHA512
  
  5f3aca058669e48c26fdded4bf7d8a879177bcf0817ec321d2f359120ce92f768acda86733454d51360b4ce98a5a66cc200800ba0142ee2aad72d6d7ed3fbfb2
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/2H2I+z0yH2I+z0x:W7BlpppARFbhFAxC7ntkntV/2c4yc4x
Score

9^/10

discovery ransomware
- Renames multiple (3760) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware