254b2a2fe938ae134a4761043f1b13c58ff943cc14a1b02cdd6564dde5b8e334 | Triage

Sharing

General

Target

254b2a2fe938ae134a4761043f1b13c58ff943cc14a1b02cdd6564dde5b8e334
Size

62KB
Sample

240901-y6gk8s1emd
MD5

53d5b754a3cf1743b1383aecedb6b300
SHA1

84ed04b42b1a4a29cbd6d38578fc4d945af9c8c3
SHA256

254b2a2fe938ae134a4761043f1b13c58ff943cc14a1b02cdd6564dde5b8e334
SHA512

218b33c424c8aa31df8d3bdb077d3ce823655be848b0970ebfebfeb6b7e2719d8d4ec53f0043197605aa37dbf6d3bdea8ddf52238088e79a18fbd414fd2b7116
SSDEEP

1536:W7ZppApBULcfpHLcfpyDMJNnyGJNnyIypCypq:6pWpBwchcwDNZq

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  254b2a2fe938ae134a4761043f1b13c58ff943cc14a1b02cdd6564dde5b8e334
- Size
  
  62KB
- MD5
  
  53d5b754a3cf1743b1383aecedb6b300
- SHA1
  
  84ed04b42b1a4a29cbd6d38578fc4d945af9c8c3
- SHA256
  
  254b2a2fe938ae134a4761043f1b13c58ff943cc14a1b02cdd6564dde5b8e334
- SHA512
  
  218b33c424c8aa31df8d3bdb077d3ce823655be848b0970ebfebfeb6b7e2719d8d4ec53f0043197605aa37dbf6d3bdea8ddf52238088e79a18fbd414fd2b7116
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyDMJNnyGJNnyIypCypq:6pWpBwchcwDNZq
Score

9^/10

discovery ransomware
- Renames multiple (3443) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware