005bfa9ad0445307784e7697c5f96feead20750eedcf8539e8a7ca3801ed315d | Triage

Sharing

General

Target

005bfa9ad0445307784e7697c5f96feead20750eedcf8539e8a7ca3801ed315d
Size

41KB
Sample

240828-wqf9esygra
MD5

2a1ccf1bae51c4dc37b041c960a1b922
SHA1

866fcfe1e9a57394e453f583b4be237499d7ba50
SHA256

005bfa9ad0445307784e7697c5f96feead20750eedcf8539e8a7ca3801ed315d
SHA512

953dbc4d08edeb36d85d01574407762621766d30d7119d51a62c1b12b327824a98a336a19a9f2823b53e14f72e5c694c2632f77ddd4fe5f1e6e575bf89358ba7
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3a5LZ7x5UR7x5U3:W7Blp9pARFbhaWTW3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  005bfa9ad0445307784e7697c5f96feead20750eedcf8539e8a7ca3801ed315d
- Size
  
  41KB
- MD5
  
  2a1ccf1bae51c4dc37b041c960a1b922
- SHA1
  
  866fcfe1e9a57394e453f583b4be237499d7ba50
- SHA256
  
  005bfa9ad0445307784e7697c5f96feead20750eedcf8539e8a7ca3801ed315d
- SHA512
  
  953dbc4d08edeb36d85d01574407762621766d30d7119d51a62c1b12b327824a98a336a19a9f2823b53e14f72e5c694c2632f77ddd4fe5f1e6e575bf89358ba7
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3a5LZ7x5UR7x5U3:W7Blp9pARFbhaWTW3
Score

9^/10

discovery ransomware
- Renames multiple (3784) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware