19aea6fd93d734a00bb1eef06e4ac6c216dc4007c19879088409cc8292248325 | Triage

Sharing

General

Target

25b2baa66dfac134ab891832970e6fd0N
Size

89KB
Sample

240829-df7drazhnb
MD5

25b2baa66dfac134ab891832970e6fd0
SHA1

ee3871186080d5c7214b8b2460828f1a62772c4c
SHA256

19aea6fd93d734a00bb1eef06e4ac6c216dc4007c19879088409cc8292248325
SHA512

28e68cf15e70bd2258271ccb47fad423b0636d0ff13019d6cf1cd3c5120e5c8f2c62f5468c9fae9125be40a2d665751886f26b9e20459cb5b50a338bbc44ad9f
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNYy0Wjy0WzYwfn:6e7WpMaxeb0CYJ97lEYNLGj

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  25b2baa66dfac134ab891832970e6fd0N
- Size
  
  89KB
- MD5
  
  25b2baa66dfac134ab891832970e6fd0
- SHA1
  
  ee3871186080d5c7214b8b2460828f1a62772c4c
- SHA256
  
  19aea6fd93d734a00bb1eef06e4ac6c216dc4007c19879088409cc8292248325
- SHA512
  
  28e68cf15e70bd2258271ccb47fad423b0636d0ff13019d6cf1cd3c5120e5c8f2c62f5468c9fae9125be40a2d665751886f26b9e20459cb5b50a338bbc44ad9f
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNYy0Wjy0WzYwfn:6e7WpMaxeb0CYJ97lEYNLGj
Score

9^/10

discovery ransomware
- Renames multiple (3072) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware