60024c3be67250f6a9b02ff829f4972b96e959eabab7a425c9ff6d2c55818032 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

178034249480e03be8087360f647aeb0N
Size

48KB
Sample

240826-edf98avcll
MD5

178034249480e03be8087360f647aeb0
SHA1

4cf7749802a27c677a391f677d76a634fd1d6314
SHA256

60024c3be67250f6a9b02ff829f4972b96e959eabab7a425c9ff6d2c55818032
SHA512

9970ba65bad9fe4d0ec55ef876d1dcff0fbaca5d14897850731dcff3d72cfb3d18bce1e7366e6390e356183d03942a404769014f04fac7f357a5b61811b9a9b7
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FzzwzgTAUAcfqg7Lvxw:/7BlpQpARFbhNIgVe

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  178034249480e03be8087360f647aeb0N
- Size
  
  48KB
- MD5
  
  178034249480e03be8087360f647aeb0
- SHA1
  
  4cf7749802a27c677a391f677d76a634fd1d6314
- SHA256
  
  60024c3be67250f6a9b02ff829f4972b96e959eabab7a425c9ff6d2c55818032
- SHA512
  
  9970ba65bad9fe4d0ec55ef876d1dcff0fbaca5d14897850731dcff3d72cfb3d18bce1e7366e6390e356183d03942a404769014f04fac7f357a5b61811b9a9b7
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FzzwzgTAUAcfqg7Lvxw:/7BlpQpARFbhNIgVe
Score

9^/10

discovery ransomware
- Renames multiple (3359) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware