2818d867da7b05d2df9a7d13c365606e01253ada40b092e53fef6d16e0ce4c62 | Triage

Sharing

General

Target

2818d867da7b05d2df9a7d13c365606e01253ada40b092e53fef6d16e0ce4c62
Size

50KB
Sample

240829-y2t1rs1dpl
MD5

79353554f425b8f4901f9aea7008b714
SHA1

e3b9991b2fe9a6054654d295fa07371dfb23e14a
SHA256

2818d867da7b05d2df9a7d13c365606e01253ada40b092e53fef6d16e0ce4c62
SHA512

d861d5582df14ffd5276da1e9593f612be4006faa0eb29d5c632d47b0cd9ab9046fe8b461616958664f590cebf700ed18724a0b9a50cd895ed483389d320c916
SSDEEP

768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nM6G:/7ZQpApmi6ns

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  2818d867da7b05d2df9a7d13c365606e01253ada40b092e53fef6d16e0ce4c62
- Size
  
  50KB
- MD5
  
  79353554f425b8f4901f9aea7008b714
- SHA1
  
  e3b9991b2fe9a6054654d295fa07371dfb23e14a
- SHA256
  
  2818d867da7b05d2df9a7d13c365606e01253ada40b092e53fef6d16e0ce4c62
- SHA512
  
  d861d5582df14ffd5276da1e9593f612be4006faa0eb29d5c632d47b0cd9ab9046fe8b461616958664f590cebf700ed18724a0b9a50cd895ed483389d320c916
- SSDEEP
  
  768:/7BlpQpARFbhn54fmiy+3BVr54fmiy+3BV6nM6G:/7ZQpApmi6ns
Score

9^/10

discovery ransomware
- Renames multiple (3758) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware