308f1f3aa7d7608cc069511546968f65021dc56974e65e447eef67cc3851a0a4 | Triage

Sharing

General

Target

308f1f3aa7d7608cc069511546968f65021dc56974e65e447eef67cc3851a0a4
Size

41KB
Sample

240825-y946pstbmd
MD5

463503c1c267224daf1b4fd3a6839ff4
SHA1

9892db641adc0fc4b29cb426b9d03a7f7565ba6c
SHA256

308f1f3aa7d7608cc069511546968f65021dc56974e65e447eef67cc3851a0a4
SHA512

cd9ace9ee35f9e8f467692ce9a4de066a7000999571ee4a857908ead77f7dd45446b942d9a06e83ad407dcc49d659685b1bc5c98b6f3af5b410124165c2af725
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzYYD4J//:/7BlpQpARFbhNIYYD4J//

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  308f1f3aa7d7608cc069511546968f65021dc56974e65e447eef67cc3851a0a4
- Size
  
  41KB
- MD5
  
  463503c1c267224daf1b4fd3a6839ff4
- SHA1
  
  9892db641adc0fc4b29cb426b9d03a7f7565ba6c
- SHA256
  
  308f1f3aa7d7608cc069511546968f65021dc56974e65e447eef67cc3851a0a4
- SHA512
  
  cd9ace9ee35f9e8f467692ce9a4de066a7000999571ee4a857908ead77f7dd45446b942d9a06e83ad407dcc49d659685b1bc5c98b6f3af5b410124165c2af725
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzYYD4J//:/7BlpQpARFbhNIYYD4J//
Score

9^/10

discovery ransomware
- Renames multiple (1270) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware