22ed4e692c773b09b9b9aca3270e605094c42e4ea89c0de9a53841378f80ae5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22ed4e692c773b09b9b9aca3270e605094c42e4ea89c0de9a53841378f80ae5d
Size

56KB
Sample

240817-ylqcmswenq
MD5

3bdeede3dee9db308d2df83684a9cccc
SHA1

1dab14caad6c34a4f74216e03d5376936e9c94e7
SHA256

22ed4e692c773b09b9b9aca3270e605094c42e4ea89c0de9a53841378f80ae5d
SHA512

0a718e689f39e7d33cb1f8b1310b90d04eee152273c5613c2bfebd53b5256c2196706330fa005ec28d06853009143a6f9f6361c2222c3512768063a4d6b6a673
SSDEEP

768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsU8Tu8TwZEZE:W7ZhA7pApw03vR03vcltdtSsU8Tu8TQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  22ed4e692c773b09b9b9aca3270e605094c42e4ea89c0de9a53841378f80ae5d
- Size
  
  56KB
- MD5
  
  3bdeede3dee9db308d2df83684a9cccc
- SHA1
  
  1dab14caad6c34a4f74216e03d5376936e9c94e7
- SHA256
  
  22ed4e692c773b09b9b9aca3270e605094c42e4ea89c0de9a53841378f80ae5d
- SHA512
  
  0a718e689f39e7d33cb1f8b1310b90d04eee152273c5613c2bfebd53b5256c2196706330fa005ec28d06853009143a6f9f6361c2222c3512768063a4d6b6a673
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801VvcR2+lJtZ2+lJtSsU8Tu8TwZEZE:W7ZhA7pApw03vR03vcltdtSsU8Tu8TQ
Score

9^/10

discovery ransomware
- Renames multiple (3758) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware