1473ecccdc524754919878e5b3b047b75c0f589b53344d260b9bcf58f228278a | Triage

Sharing

General

Target

1473ecccdc524754919878e5b3b047b75c0f589b53344d260b9bcf58f228278a
Size

38KB
Sample

240813-xbyqlazera
MD5

13b73e26ade1c2c9f69d75b6026ba945
SHA1

bc632eb426714c31c1c3248f8a6b94c95af380af
SHA256

1473ecccdc524754919878e5b3b047b75c0f589b53344d260b9bcf58f228278a
SHA512

23044f8a19e3891364aa95a79b0cdf4069c5d3d2f44781198309ac307890a8e4529e74d8375ff66dda1a50fda8cd36ccc7c73c5d1be70f8bd73dc40c2b270275
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzrYcUYcr:/7BlpQpARFbhNIrYcUYcr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1473ecccdc524754919878e5b3b047b75c0f589b53344d260b9bcf58f228278a
- Size
  
  38KB
- MD5
  
  13b73e26ade1c2c9f69d75b6026ba945
- SHA1
  
  bc632eb426714c31c1c3248f8a6b94c95af380af
- SHA256
  
  1473ecccdc524754919878e5b3b047b75c0f589b53344d260b9bcf58f228278a
- SHA512
  
  23044f8a19e3891364aa95a79b0cdf4069c5d3d2f44781198309ac307890a8e4529e74d8375ff66dda1a50fda8cd36ccc7c73c5d1be70f8bd73dc40c2b270275
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzrYcUYcr:/7BlpQpARFbhNIrYcUYcr
Score

9^/10

discovery ransomware
- Renames multiple (4125) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware