ba4b4cf402d829b76d9508dea7f00c6463d4e465ef1f82d8274387f3ce067940 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba4b4cf402d829b76d9508dea7f00c6463d4e465ef1f82d8274387f3ce067940
Size

100KB
Sample

240826-cqntqa1dkl
MD5

75bc62c313bf78405827458d3ac4a3e6
SHA1

b9548e83a1058f8057ff22be322a31422cbba135
SHA256

ba4b4cf402d829b76d9508dea7f00c6463d4e465ef1f82d8274387f3ce067940
SHA512

120ce7d6fe5d0a1ec65264d36a50c7880db61806e8f073e19d81eb79500b1417c4408b3e71f30466fc0ba724840cb38f3364df9a84aefe694e5a408b41d60667
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBk:PqFF2Ie+efsLwcC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ba4b4cf402d829b76d9508dea7f00c6463d4e465ef1f82d8274387f3ce067940
- Size
  
  100KB
- MD5
  
  75bc62c313bf78405827458d3ac4a3e6
- SHA1
  
  b9548e83a1058f8057ff22be322a31422cbba135
- SHA256
  
  ba4b4cf402d829b76d9508dea7f00c6463d4e465ef1f82d8274387f3ce067940
- SHA512
  
  120ce7d6fe5d0a1ec65264d36a50c7880db61806e8f073e19d81eb79500b1417c4408b3e71f30466fc0ba724840cb38f3364df9a84aefe694e5a408b41d60667
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBk:PqFF2Ie+efsLwcC
Score

9^/10

discovery ransomware
- Renames multiple (3535) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware