4f6c1c459264c0d0a1b8096ed78fd41fa3b4f144543134b0d99b77290703434e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f6c1c459264c0d0a1b8096ed78fd41fa3b4f144543134b0d99b77290703434e
Size

45KB
Sample

240817-1zjhcszckf
MD5

c250b2b5bd8e19ac98c8298fad4849b6
SHA1

bdd3856aecf99d33f11b3be42d4e30f901c6ce8d
SHA256

4f6c1c459264c0d0a1b8096ed78fd41fa3b4f144543134b0d99b77290703434e
SHA512

52b6ca1b010814ae81c9d13b73d9f10039c17fea6145eaea38779610a48c7db2b3817824709c476852241f4bde3b5332663152799034cb520daacb50f79a9d01
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLmuH9uHBlNo:W7ZppApBULcfpHLcfpyD9uH9uHvNo

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4f6c1c459264c0d0a1b8096ed78fd41fa3b4f144543134b0d99b77290703434e
- Size
  
  45KB
- MD5
  
  c250b2b5bd8e19ac98c8298fad4849b6
- SHA1
  
  bdd3856aecf99d33f11b3be42d4e30f901c6ce8d
- SHA256
  
  4f6c1c459264c0d0a1b8096ed78fd41fa3b4f144543134b0d99b77290703434e
- SHA512
  
  52b6ca1b010814ae81c9d13b73d9f10039c17fea6145eaea38779610a48c7db2b3817824709c476852241f4bde3b5332663152799034cb520daacb50f79a9d01
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLmuH9uHBlNo:W7ZppApBULcfpHLcfpyD9uH9uHvNo
Score

9^/10

discovery ransomware
- Renames multiple (931) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware