c466d08404ea29a198ad28d491718b7158c125125ff9424c2290671d0c87a13a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c466d08404ea29a198ad28d491718b7158c125125ff9424c2290671d0c87a13a
Size

90KB
Sample

240901-cyzwysygqk
MD5

f707d17532b0b87ecd906ea34e288a98
SHA1

266ac0af4b981876838076891b3d47b4db8d53ad
SHA256

c466d08404ea29a198ad28d491718b7158c125125ff9424c2290671d0c87a13a
SHA512

98cc796d06301391c3dc61de6b06ff18c50feab9cd477fb94123ea398e0c8b610f214d1db4986439d498e83daf232617ed6dd2d3a20047bafbb72df03ac8b0fe
SSDEEP

1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSx2AmdG3mdGR:6DWp7W52I

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c466d08404ea29a198ad28d491718b7158c125125ff9424c2290671d0c87a13a
- Size
  
  90KB
- MD5
  
  f707d17532b0b87ecd906ea34e288a98
- SHA1
  
  266ac0af4b981876838076891b3d47b4db8d53ad
- SHA256
  
  c466d08404ea29a198ad28d491718b7158c125125ff9424c2290671d0c87a13a
- SHA512
  
  98cc796d06301391c3dc61de6b06ff18c50feab9cd477fb94123ea398e0c8b610f214d1db4986439d498e83daf232617ed6dd2d3a20047bafbb72df03ac8b0fe
- SSDEEP
  
  1536:W7ZDpApYbVK4vx4PN54PN4OHepOHeZSx2AmdG3mdGR:6DWp7W52I
Score

9^/10

discovery ransomware
- Renames multiple (3542) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware