b59f8887f4adc3a972e527a42460cfa9ffefd547388f8b11d0a2bc0a2637eccb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b59f8887f4adc3a972e527a42460cfa9ffefd547388f8b11d0a2bc0a2637eccb
Size

65KB
Sample

240829-cnhjxsydpa
MD5

2cbe7e9523289ed1e45122dd50baddd7
SHA1

bcf30ba5afde561d38068706cabe9be13396d922
SHA256

b59f8887f4adc3a972e527a42460cfa9ffefd547388f8b11d0a2bc0a2637eccb
SHA512

d9457f6c2ba4088e2f60c5bcb28753335e5f35f24a78e5f2395988b8d974d0cfb024f1bc89ae9a6e6ab466ccd10389a2296bc53f4e08c6bb4277937414ae9af1
SSDEEP

768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwcJdkCKPuJdkCKPy//ZN8ZZ8ZZ:W7ZppApAJdkCKPuJdkCKPbZWZZ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b59f8887f4adc3a972e527a42460cfa9ffefd547388f8b11d0a2bc0a2637eccb
- Size
  
  65KB
- MD5
  
  2cbe7e9523289ed1e45122dd50baddd7
- SHA1
  
  bcf30ba5afde561d38068706cabe9be13396d922
- SHA256
  
  b59f8887f4adc3a972e527a42460cfa9ffefd547388f8b11d0a2bc0a2637eccb
- SHA512
  
  d9457f6c2ba4088e2f60c5bcb28753335e5f35f24a78e5f2395988b8d974d0cfb024f1bc89ae9a6e6ab466ccd10389a2296bc53f4e08c6bb4277937414ae9af1
- SSDEEP
  
  768:W7BlpppARFbhHFoqAJwBqAJw70EXBwzEXBwcJdkCKPuJdkCKPy//ZN8ZZ8ZZ:W7ZppApAJdkCKPuJdkCKPbZWZZ
Score

9^/10

discovery ransomware
- Renames multiple (3645) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware