922e66e6ec237982aec2ecd994eff18ca3b617ceb3a2c49ab1fbd297ff9da051 | Triage

Sharing

General

Target

922e66e6ec237982aec2ecd994eff18ca3b617ceb3a2c49ab1fbd297ff9da051
Size

195KB
Sample

240817-ck49hsvbrj
MD5

8261a3d48b3466c5b4fb45e6fff62f6a
SHA1

35f976d3cb60262640e61332911baa04e375ccc0
SHA256

922e66e6ec237982aec2ecd994eff18ca3b617ceb3a2c49ab1fbd297ff9da051
SHA512

40961bbdec1cf012be0438abf5b93c19d5639f2b6ba85beef62b24e4ea04b8bc88d8d013657b72fb830f354ca335db48aaba175cf07e67fa07bbd017141e394c
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkmKd:RqKB+tOkWKR0iJ0lTzkP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  922e66e6ec237982aec2ecd994eff18ca3b617ceb3a2c49ab1fbd297ff9da051
- Size
  
  195KB
- MD5
  
  8261a3d48b3466c5b4fb45e6fff62f6a
- SHA1
  
  35f976d3cb60262640e61332911baa04e375ccc0
- SHA256
  
  922e66e6ec237982aec2ecd994eff18ca3b617ceb3a2c49ab1fbd297ff9da051
- SHA512
  
  40961bbdec1cf012be0438abf5b93c19d5639f2b6ba85beef62b24e4ea04b8bc88d8d013657b72fb830f354ca335db48aaba175cf07e67fa07bbd017141e394c
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkmKd:RqKB+tOkWKR0iJ0lTzkP
Score

9^/10

discovery ransomware
- Renames multiple (3032) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware