0323301edef3500d60740e5f4527772a1eda1da93b92c7afb90f80e8dff17b9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0323301edef3500d60740e5f4527772a1eda1da93b92c7afb90f80e8dff17b9d
Size

47KB
Sample

240825-xplyyszaqe
MD5

3dd58bc863d0b6db5dc1f0a93c3c5a4c
SHA1

1e8c7682a1e771fdf56f3d30ab3c9cb267663a01
SHA256

0323301edef3500d60740e5f4527772a1eda1da93b92c7afb90f80e8dff17b9d
SHA512

b91b8653d20409edc708643f05355e2d8d7a28df7680d94009e02f3b78ed072573aee613d02c58a9b351f3e2d279676cdb115796d62d66a736b2913fca3be8d4
SSDEEP

768:W7BlpppARFbhbt7Y7wTCnB2ELEW0fZfZ/2:W7ZppApgz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0323301edef3500d60740e5f4527772a1eda1da93b92c7afb90f80e8dff17b9d
- Size
  
  47KB
- MD5
  
  3dd58bc863d0b6db5dc1f0a93c3c5a4c
- SHA1
  
  1e8c7682a1e771fdf56f3d30ab3c9cb267663a01
- SHA256
  
  0323301edef3500d60740e5f4527772a1eda1da93b92c7afb90f80e8dff17b9d
- SHA512
  
  b91b8653d20409edc708643f05355e2d8d7a28df7680d94009e02f3b78ed072573aee613d02c58a9b351f3e2d279676cdb115796d62d66a736b2913fca3be8d4
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCnB2ELEW0fZfZ/2:W7ZppApgz
Score

9^/10

discovery ransomware
- Renames multiple (3682) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware