87693699df7dd3e8b63d65f3028570a3276cb5702c1e952b977d9450d80a33f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87693699df7dd3e8b63d65f3028570a3276cb5702c1e952b977d9450d80a33f9
Size

74KB
Sample

240817-bzyvlszclf
MD5

fe15b6aba7107d04604e9a517f621c72
SHA1

3fdcd2e212fc94facb9a0e5b4df84b51c069e3f1
SHA256

87693699df7dd3e8b63d65f3028570a3276cb5702c1e952b977d9450d80a33f9
SHA512

ef349d46a6a4b3ec84cdb21677dba20947cac129c8f41626ba3d8d76c81077706292da5d00b0d55cfc844afb31784c8d327abc3766e46b7e69162ee05f424a62
SSDEEP

768:W7BlphA7pARFbhvOsTKnKqtb4HBZjlwGpCYnigugqOzM9bdifwMtxEwJjlVk/:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  87693699df7dd3e8b63d65f3028570a3276cb5702c1e952b977d9450d80a33f9
- Size
  
  74KB
- MD5
  
  fe15b6aba7107d04604e9a517f621c72
- SHA1
  
  3fdcd2e212fc94facb9a0e5b4df84b51c069e3f1
- SHA256
  
  87693699df7dd3e8b63d65f3028570a3276cb5702c1e952b977d9450d80a33f9
- SHA512
  
  ef349d46a6a4b3ec84cdb21677dba20947cac129c8f41626ba3d8d76c81077706292da5d00b0d55cfc844afb31784c8d327abc3766e46b7e69162ee05f424a62
- SSDEEP
  
  768:W7BlphA7pARFbhvOsTKnKqtb4HBZjlwGpCYnigugqOzM9bdifwMtxEwJjlVk/:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlY
Score

9^/10

discovery ransomware
- Renames multiple (3528) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware