4c05536a7d5bb572df1a8fe24019f632612b73d18be3317c5b7a136d0d28b7a1 | Triage

Sharing

General

Target

4c05536a7d5bb572df1a8fe24019f632612b73d18be3317c5b7a136d0d28b7a1
Size

54KB
Sample

240816-2b4n3avaql
MD5

deb03f56440888625399111744bb03ec
SHA1

e51c35d8e9f21f4110ec1d018fa54297b02f7215
SHA256

4c05536a7d5bb572df1a8fe24019f632612b73d18be3317c5b7a136d0d28b7a1
SHA512

acf29c66802b992ef57229d237039b6e96e2c4afea10aeab1cdba3ac9cd0a54fcb404d72479f74c48211c755c44b1c6654a3e162fe05680aa265882d06bac894
SSDEEP

768:W7BlpppARFbhFAxC7ntkntV/E+BSBmBCUK9+BSBmBCUKD:W7ZppApryJMkPMk+

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4c05536a7d5bb572df1a8fe24019f632612b73d18be3317c5b7a136d0d28b7a1
- Size
  
  54KB
- MD5
  
  deb03f56440888625399111744bb03ec
- SHA1
  
  e51c35d8e9f21f4110ec1d018fa54297b02f7215
- SHA256
  
  4c05536a7d5bb572df1a8fe24019f632612b73d18be3317c5b7a136d0d28b7a1
- SHA512
  
  acf29c66802b992ef57229d237039b6e96e2c4afea10aeab1cdba3ac9cd0a54fcb404d72479f74c48211c755c44b1c6654a3e162fe05680aa265882d06bac894
- SSDEEP
  
  768:W7BlpppARFbhFAxC7ntkntV/E+BSBmBCUK9+BSBmBCUKD:W7ZppApryJMkPMk+
Score

9^/10

discovery ransomware
- Renames multiple (1067) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware