ce791d5a24f08ad32ebd8a315dfe7fe0672472a2233827c437874a21e0a7663c | Triage

Sharing

General

Target

ce791d5a24f08ad32ebd8a315dfe7fe0672472a2233827c437874a21e0a7663c
Size

51KB
Sample

240826-dxgvestdpr
MD5

2bc90ee16f31be953f23b1ff26b8345b
SHA1

dfd3dcd1c7f9830b251819952bc5d581439a1acf
SHA256

ce791d5a24f08ad32ebd8a315dfe7fe0672472a2233827c437874a21e0a7663c
SHA512

36fd4ebfdf0d9f7dfdb5e75d44e41f895c75b9115d901de2038b8f835b3b91ceb87ac75766440cd9d26680aa60d58a1d58c9e63f2c4e7431f802bc7363e702f0
SSDEEP

768:W7BlpppARFbhbt7Y7wTCg0hcM0hc0C76QC76BwB:W7ZppApN0hcM0hc026Q26BwB

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ce791d5a24f08ad32ebd8a315dfe7fe0672472a2233827c437874a21e0a7663c
- Size
  
  51KB
- MD5
  
  2bc90ee16f31be953f23b1ff26b8345b
- SHA1
  
  dfd3dcd1c7f9830b251819952bc5d581439a1acf
- SHA256
  
  ce791d5a24f08ad32ebd8a315dfe7fe0672472a2233827c437874a21e0a7663c
- SHA512
  
  36fd4ebfdf0d9f7dfdb5e75d44e41f895c75b9115d901de2038b8f835b3b91ceb87ac75766440cd9d26680aa60d58a1d58c9e63f2c4e7431f802bc7363e702f0
- SSDEEP
  
  768:W7BlpppARFbhbt7Y7wTCg0hcM0hc0C76QC76BwB:W7ZppApN0hcM0hc026Q26BwB
Score

9^/10

discovery ransomware
- Renames multiple (3757) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware