ebcd3cb583c3b20ccffa7f78187cae6fb34efae6f06b02457271b93d713e95ed | Triage

Sharing

General

Target

ebcd3cb583c3b20ccffa7f78187cae6fb34efae6f06b02457271b93d713e95ed
Size

39KB
Sample

240824-gg54vsxfrn
MD5

889e67d871f9e500d728a627bf056ab6
SHA1

021d087c06dcb0f6f84fe88e03bd87869be8c698
SHA256

ebcd3cb583c3b20ccffa7f78187cae6fb34efae6f06b02457271b93d713e95ed
SHA512

d76b89a14a9245b8d88a51403c4ff35fcd1d0ba56e60d201dcc4fda5e788b242f1c17604fd1701cb6025820a7087b25c394b8702ccef4290f6cc6f326b482db1
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwzscuc9lUFTlUFt:/7BlpQpARFbhNI6FuFt

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ebcd3cb583c3b20ccffa7f78187cae6fb34efae6f06b02457271b93d713e95ed
- Size
  
  39KB
- MD5
  
  889e67d871f9e500d728a627bf056ab6
- SHA1
  
  021d087c06dcb0f6f84fe88e03bd87869be8c698
- SHA256
  
  ebcd3cb583c3b20ccffa7f78187cae6fb34efae6f06b02457271b93d713e95ed
- SHA512
  
  d76b89a14a9245b8d88a51403c4ff35fcd1d0ba56e60d201dcc4fda5e788b242f1c17604fd1701cb6025820a7087b25c394b8702ccef4290f6cc6f326b482db1
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwzscuc9lUFTlUFt:/7BlpQpARFbhNI6FuFt
Score

9^/10

discovery ransomware
- Renames multiple (4015) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware