abcdbf29205f09254dcfe0e412e1cf586f81a79e4fe61a58dbd12d77b999ac90 | Triage

Sharing

General

Target

abcdbf29205f09254dcfe0e412e1cf586f81a79e4fe61a58dbd12d77b999ac90
Size

55KB
Sample

240909-bym2qavgmn
MD5

29d622424fa4b730b8ff41875d70d76c
SHA1

437aae37d5a8d4526cbc671b2667f2c868834151
SHA256

abcdbf29205f09254dcfe0e412e1cf586f81a79e4fe61a58dbd12d77b999ac90
SHA512

b4c468a4926a427dcdc9f78524bb695de43a9d54977708ed856e8f804b4ea8231d8f464790dd1610b16407b4aeb54a94ca6a2653664d0ebf3eb61c286fc8dc9f
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/eazc5azccpp:W7BlpppARFbhFAxC7ntkntV/fo4ocpp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  abcdbf29205f09254dcfe0e412e1cf586f81a79e4fe61a58dbd12d77b999ac90
- Size
  
  55KB
- MD5
  
  29d622424fa4b730b8ff41875d70d76c
- SHA1
  
  437aae37d5a8d4526cbc671b2667f2c868834151
- SHA256
  
  abcdbf29205f09254dcfe0e412e1cf586f81a79e4fe61a58dbd12d77b999ac90
- SHA512
  
  b4c468a4926a427dcdc9f78524bb695de43a9d54977708ed856e8f804b4ea8231d8f464790dd1610b16407b4aeb54a94ca6a2653664d0ebf3eb61c286fc8dc9f
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBNKVkVYlIAItCCIntkntV/eazc5azccpp:W7BlpppARFbhFAxC7ntkntV/fo4ocpp
Score

9^/10

discovery ransomware
- Renames multiple (3709) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware