188c92fad20e985cfaa121a17a2486ed278577f4dbd7bdd14db5e50b46a0bf1f | Triage

Sharing

General

Target

188c92fad20e985cfaa121a17a2486ed278577f4dbd7bdd14db5e50b46a0bf1f
Size

43KB
Sample

240825-xyqcqs1hqp
MD5

4adf60f07301aa8fc2f78349fc26a10c
SHA1

01bb60461df6b361700660863154a65f6d30c5db
SHA256

188c92fad20e985cfaa121a17a2486ed278577f4dbd7bdd14db5e50b46a0bf1f
SHA512

ef32c7ce0990cb5fd95ba341aa616248acaf1414b9806d9543f1dd541780a84b1f3b080f4c6cbdeb82db929221824f175d597b984333b38b98e1dd22ac2309d8
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzSMn76GRI0Mn76GRI8:/7BlpQpARFbhNISC76QC76A

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  188c92fad20e985cfaa121a17a2486ed278577f4dbd7bdd14db5e50b46a0bf1f
- Size
  
  43KB
- MD5
  
  4adf60f07301aa8fc2f78349fc26a10c
- SHA1
  
  01bb60461df6b361700660863154a65f6d30c5db
- SHA256
  
  188c92fad20e985cfaa121a17a2486ed278577f4dbd7bdd14db5e50b46a0bf1f
- SHA512
  
  ef32c7ce0990cb5fd95ba341aa616248acaf1414b9806d9543f1dd541780a84b1f3b080f4c6cbdeb82db929221824f175d597b984333b38b98e1dd22ac2309d8
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzSMn76GRI0Mn76GRI8:/7BlpQpARFbhNISC76QC76A
Score

9^/10

discovery ransomware
- Renames multiple (3932) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware