c00efbd3bba8161e962e82f2d092b7c0d162a3e9f843bbfb39ac7604f9ae3c39 | Triage

Sharing

General

Target

c00efbd3bba8161e962e82f2d092b7c0d162a3e9f843bbfb39ac7604f9ae3c39
Size

34KB
Sample

240819-bj5m8awarg
MD5

a6095cd532302b78463bc6cfb09cd1cd
SHA1

80a47f1b04358a34232a1c92fcfae3b632528a0e
SHA256

c00efbd3bba8161e962e82f2d092b7c0d162a3e9f843bbfb39ac7604f9ae3c39
SHA512

1bf575b9c3b18a5c6933b1e325d1df4d1853c16bf6e7f9676291d13a80641b42e38c64d3755918369faee545eab01e2214db4df3957d0fd239e084363ad87cb4
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltKV06:W7ZhA7pApM21LOA1LOl6AKW6

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c00efbd3bba8161e962e82f2d092b7c0d162a3e9f843bbfb39ac7604f9ae3c39
- Size
  
  34KB
- MD5
  
  a6095cd532302b78463bc6cfb09cd1cd
- SHA1
  
  80a47f1b04358a34232a1c92fcfae3b632528a0e
- SHA256
  
  c00efbd3bba8161e962e82f2d092b7c0d162a3e9f843bbfb39ac7604f9ae3c39
- SHA512
  
  1bf575b9c3b18a5c6933b1e325d1df4d1853c16bf6e7f9676291d13a80641b42e38c64d3755918369faee545eab01e2214db4df3957d0fd239e084363ad87cb4
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltKV06:W7ZhA7pApM21LOA1LOl6AKW6
Score

9^/10

discovery ransomware
- Renames multiple (3793) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware