42f04a2eb7b8e2f03ff13c94c33abc29d8e4c21d5cfab1b01c55832d82a45811 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42f04a2eb7b8e2f03ff13c94c33abc29d8e4c21d5cfab1b01c55832d82a45811
Size

88KB
Sample

240813-yzes3atflh
MD5

9932b346abc67c6009781e20f6d34681
SHA1

5278fbded35fe7121ebbaa3e30865f9733a791b4
SHA256

42f04a2eb7b8e2f03ff13c94c33abc29d8e4c21d5cfab1b01c55832d82a45811
SHA512

2f306aa72a7a178e836794ce7a0acbd835240595bf3b58a978b5c0cf835fb4f846f9a232d408811fc1abc65f74d33a0fafb3e2757968b64bbbc2ea8cd8fa1c0b
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhn:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsG

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  42f04a2eb7b8e2f03ff13c94c33abc29d8e4c21d5cfab1b01c55832d82a45811
- Size
  
  88KB
- MD5
  
  9932b346abc67c6009781e20f6d34681
- SHA1
  
  5278fbded35fe7121ebbaa3e30865f9733a791b4
- SHA256
  
  42f04a2eb7b8e2f03ff13c94c33abc29d8e4c21d5cfab1b01c55832d82a45811
- SHA512
  
  2f306aa72a7a178e836794ce7a0acbd835240595bf3b58a978b5c0cf835fb4f846f9a232d408811fc1abc65f74d33a0fafb3e2757968b64bbbc2ea8cd8fa1c0b
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhn:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsG
Score

9^/10

discovery ransomware
- Renames multiple (3608) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware