25dd23d56e652929f17994b5d6043e0107464ab543346e18a6882f21efe702cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25dd23d56e652929f17994b5d6043e0107464ab543346e18a6882f21efe702cd
Size

42KB
Sample

240818-x9tvaszgqd
MD5

4c6750015d2acccd06b3530cfe86b063
SHA1

9374c99505a6d446b87b7ffffbcf0e3e7c8e8030
SHA256

25dd23d56e652929f17994b5d6043e0107464ab543346e18a6882f21efe702cd
SHA512

95fd6dfa5f162405e069d58fda77070a7e4471bd4e17245bab561960ce575e5e7b986590fed4b58890a4a27537a97a40b7b4330af62ff512faab0b5a5ffad305
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3h/l21Pw4KUml21Pw4KU/:W7Blp9pARFbh4dwEbdwE/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  25dd23d56e652929f17994b5d6043e0107464ab543346e18a6882f21efe702cd
- Size
  
  42KB
- MD5
  
  4c6750015d2acccd06b3530cfe86b063
- SHA1
  
  9374c99505a6d446b87b7ffffbcf0e3e7c8e8030
- SHA256
  
  25dd23d56e652929f17994b5d6043e0107464ab543346e18a6882f21efe702cd
- SHA512
  
  95fd6dfa5f162405e069d58fda77070a7e4471bd4e17245bab561960ce575e5e7b986590fed4b58890a4a27537a97a40b7b4330af62ff512faab0b5a5ffad305
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3h/l21Pw4KUml21Pw4KU/:W7Blp9pARFbh4dwEbdwE/
Score

9^/10

discovery ransomware
- Renames multiple (4059) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware