ed75df71cf311e044a16950ca839bd4013054d2e7a1730663f2f74257c94e0cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ed75df71cf311e044a16950ca839bd4013054d2e7a1730663f2f74257c94e0cd
Size

53KB
Sample

240819-dg7qxa1ang
MD5

4db65d1ab88a4ffd7d0466239c4abe0d
SHA1

458ba0667f93f1498aedbd3233ccf24733bb5e7b
SHA256

ed75df71cf311e044a16950ca839bd4013054d2e7a1730663f2f74257c94e0cd
SHA512

676a6816cca0f4f06f572a6c9ab8363d1688a482dde6d8897dd72f86825f9e153bbba4910896f1ec837f4e2bcdbbfdce36b7273e02012df17682c060ec23b5d3
SSDEEP

768:W7BlphA7pARFbhL801VvM801Vvv7lSKSW7afHFCSW7afHFyqAHJQqAHJW:W7ZhA7pApw03vR03vxSKSWu0SWuK

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ed75df71cf311e044a16950ca839bd4013054d2e7a1730663f2f74257c94e0cd
- Size
  
  53KB
- MD5
  
  4db65d1ab88a4ffd7d0466239c4abe0d
- SHA1
  
  458ba0667f93f1498aedbd3233ccf24733bb5e7b
- SHA256
  
  ed75df71cf311e044a16950ca839bd4013054d2e7a1730663f2f74257c94e0cd
- SHA512
  
  676a6816cca0f4f06f572a6c9ab8363d1688a482dde6d8897dd72f86825f9e153bbba4910896f1ec837f4e2bcdbbfdce36b7273e02012df17682c060ec23b5d3
- SSDEEP
  
  768:W7BlphA7pARFbhL801VvM801Vvv7lSKSW7afHFCSW7afHFyqAHJQqAHJW:W7ZhA7pApw03vR03vxSKSWu0SWuK
Score

9^/10

discovery ransomware
- Renames multiple (3763) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware