71f249630f1b263db81d57ed8ed32e1dadf1534de6978953aef1e864d44be1cd | Triage

Sharing

General

Target

71f249630f1b263db81d57ed8ed32e1dadf1534de6978953aef1e864d44be1cd
Size

77KB
Sample

240818-16t8faxfle
MD5

4339074e11491136ab1939c7ef8339fa
SHA1

1387bd7cbf2db4417d6f32d69478e18afdfd2c06
SHA256

71f249630f1b263db81d57ed8ed32e1dadf1534de6978953aef1e864d44be1cd
SHA512

9e14a2474dd3b4bc3c7abbb6b8c10bd9de2e8413742a63f23f07521edba9936190460b6fa788048c094a266d3620bc2e4bee2d77654975122e6892587967d232
SSDEEP

1536:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlfM:6e7WpRaSljZM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  71f249630f1b263db81d57ed8ed32e1dadf1534de6978953aef1e864d44be1cd
- Size
  
  77KB
- MD5
  
  4339074e11491136ab1939c7ef8339fa
- SHA1
  
  1387bd7cbf2db4417d6f32d69478e18afdfd2c06
- SHA256
  
  71f249630f1b263db81d57ed8ed32e1dadf1534de6978953aef1e864d44be1cd
- SHA512
  
  9e14a2474dd3b4bc3c7abbb6b8c10bd9de2e8413742a63f23f07521edba9936190460b6fa788048c094a266d3620bc2e4bee2d77654975122e6892587967d232
- SSDEEP
  
  1536:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlfM:6e7WpRaSljZM
Score

9^/10

discovery ransomware
- Renames multiple (3624) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware