e0ece19c2d33f8cb0de09439ccefc3aea6ce1aa4465f27b638ccc16dc8e907e0 | Triage

Sharing

General

Target

73e9c5f9bf2ceb320d3a21a6c7e2db50N
Size

43KB
Sample

240826-kz93baxdrm
MD5

73e9c5f9bf2ceb320d3a21a6c7e2db50
SHA1

492d0dca9db303f6ab27d0db60b0f40b3c88f925
SHA256

e0ece19c2d33f8cb0de09439ccefc3aea6ce1aa4465f27b638ccc16dc8e907e0
SHA512

f38c1fcc81bf9f1f0d0a2557cf616b1378e046663e1f06610fd9e801629487d92c396104af21b845819681ae6d4d7b9ba6851cc5cadffc856ba9a6f858231e16
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3Gb9CGDb9CGBjUDXV8gcjUDXV8gu:W7Blp9pARFbhOCQCPjw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  73e9c5f9bf2ceb320d3a21a6c7e2db50N
- Size
  
  43KB
- MD5
  
  73e9c5f9bf2ceb320d3a21a6c7e2db50
- SHA1
  
  492d0dca9db303f6ab27d0db60b0f40b3c88f925
- SHA256
  
  e0ece19c2d33f8cb0de09439ccefc3aea6ce1aa4465f27b638ccc16dc8e907e0
- SHA512
  
  f38c1fcc81bf9f1f0d0a2557cf616b1378e046663e1f06610fd9e801629487d92c396104af21b845819681ae6d4d7b9ba6851cc5cadffc856ba9a6f858231e16
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3Gb9CGDb9CGBjUDXV8gcjUDXV8gu:W7Blp9pARFbhOCQCPjw
Score

9^/10

discovery ransomware
- Renames multiple (3357) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware