d2ff041e41e856b17b1b3f8a28511a99a5687f42659b4c41adb6abcb9388a2e0 | Triage

Sharing

General

Target

d2ff041e41e856b17b1b3f8a28511a99a5687f42659b4c41adb6abcb9388a2e0
Size

36KB
Sample

240819-cb79ta1ell
MD5

ee5a15901a0fa0e88ebaf538df84b265
SHA1

c8bc148b5f2243175fcb9c7409a5006fe7f58b90
SHA256

d2ff041e41e856b17b1b3f8a28511a99a5687f42659b4c41adb6abcb9388a2e0
SHA512

0e2a84ba5e3071682fcec96056a1c6c3b784da6c4b4d5513bbc029362c27b1eeaebf869af26837c7b00ef287ca9a165382c04c9dab5845e63bef7bdb94e99d99
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHhpqW7U7O/+lPp:yBs7Br5xjL8AgA71Fbhvszwr

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d2ff041e41e856b17b1b3f8a28511a99a5687f42659b4c41adb6abcb9388a2e0
- Size
  
  36KB
- MD5
  
  ee5a15901a0fa0e88ebaf538df84b265
- SHA1
  
  c8bc148b5f2243175fcb9c7409a5006fe7f58b90
- SHA256
  
  d2ff041e41e856b17b1b3f8a28511a99a5687f42659b4c41adb6abcb9388a2e0
- SHA512
  
  0e2a84ba5e3071682fcec96056a1c6c3b784da6c4b4d5513bbc029362c27b1eeaebf869af26837c7b00ef287ca9a165382c04c9dab5845e63bef7bdb94e99d99
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHhpqW7U7O/+lPp:yBs7Br5xjL8AgA71Fbhvszwr
Score

9^/10

discovery ransomware
- Renames multiple (3778) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware