298769c7e03b92ba550162171eb84ebefddb60ec40fbfd4e26e329c2e1dc608b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

298769c7e03b92ba550162171eb84ebefddb60ec40fbfd4e26e329c2e1dc608b
Size

40KB
Sample

240825-yzdk1asfkh
MD5

2f13b9e1ad51e8ef2b097aa0d6b56415
SHA1

c09bd16e6b3e25006132e768cd6aa885b64b41aa
SHA256

298769c7e03b92ba550162171eb84ebefddb60ec40fbfd4e26e329c2e1dc608b
SHA512

7d28c2c18a0658b467b595076ef8335c1adc1fd029a2a109d66dc70e5e52b03743310163e823e7e301c836b3b48c3429301b6d9c0d17a1b6675f30ccf6459849
SSDEEP

384:yBs7Br5xjL8AgA71FbhvsDYcUYcQknNOanNO2:/7BlpQpARFbhsYcUYcX

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  298769c7e03b92ba550162171eb84ebefddb60ec40fbfd4e26e329c2e1dc608b
- Size
  
  40KB
- MD5
  
  2f13b9e1ad51e8ef2b097aa0d6b56415
- SHA1
  
  c09bd16e6b3e25006132e768cd6aa885b64b41aa
- SHA256
  
  298769c7e03b92ba550162171eb84ebefddb60ec40fbfd4e26e329c2e1dc608b
- SHA512
  
  7d28c2c18a0658b467b595076ef8335c1adc1fd029a2a109d66dc70e5e52b03743310163e823e7e301c836b3b48c3429301b6d9c0d17a1b6675f30ccf6459849
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvsDYcUYcQknNOanNO2:/7BlpQpARFbhsYcUYcX
Score

9^/10

discovery ransomware
- Renames multiple (3785) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware