177896688b9501bcb05776fb771a565123a5a8a10c3edf673545aae367d00198 | Triage

Sharing

General

Target

177896688b9501bcb05776fb771a565123a5a8a10c3edf673545aae367d00198
Size

70KB
Sample

240813-xfxdbsvelm
MD5

b9ba701ad274444b6021171f1a97167f
SHA1

89cec273f4a0851b9f27a69c06bf2d32da2877b9
SHA256

177896688b9501bcb05776fb771a565123a5a8a10c3edf673545aae367d00198
SHA512

5e9874dcfbbd13b3ade33cd909340cf193cd04e5b605827120d5644d3d8f86d0c8dd832327303bfe245a8e57e02115adfdda5d204c19b0853c30c35f394f8377
SSDEEP

1536:W7ZppApBULcfpHLcfpX2/Nw/NwmxR2RWTWq:6pWpBwchcV2Wxr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  177896688b9501bcb05776fb771a565123a5a8a10c3edf673545aae367d00198
- Size
  
  70KB
- MD5
  
  b9ba701ad274444b6021171f1a97167f
- SHA1
  
  89cec273f4a0851b9f27a69c06bf2d32da2877b9
- SHA256
  
  177896688b9501bcb05776fb771a565123a5a8a10c3edf673545aae367d00198
- SHA512
  
  5e9874dcfbbd13b3ade33cd909340cf193cd04e5b605827120d5644d3d8f86d0c8dd832327303bfe245a8e57e02115adfdda5d204c19b0853c30c35f394f8377
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpX2/Nw/NwmxR2RWTWq:6pWpBwchcV2Wxr
Score

9^/10

discovery ransomware
- Renames multiple (1025) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware