91ff5a9a2507ede4fc1bfda6bf228d659ff7dbd057ade71c5c3e5d3547116820 | Triage

Sharing

General

Target

91ff5a9a2507ede4fc1bfda6bf228d659ff7dbd057ade71c5c3e5d3547116820
Size

50KB
Sample

240911-3tenbszemc
MD5

2aeca2bcd7d4f8f548164fc6fd1008fc
SHA1

d1a2e30526930340a6ed227b41aae8cbf0fb6b48
SHA256

91ff5a9a2507ede4fc1bfda6bf228d659ff7dbd057ade71c5c3e5d3547116820
SHA512

bcd516c32468f715bbd81c27d76b6216c812cd1a4138d714c01a92d9ddb36f63bf690120462f74413a1a18b0cd5a38e71d2e24031ffa92003cc2e8016ffb71ff
SSDEEP

1536:W7ZppApBULcfpHLcfpyDUdyGdyjnKwjzhjzr:6pWpBwchcwDNZjVj3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  91ff5a9a2507ede4fc1bfda6bf228d659ff7dbd057ade71c5c3e5d3547116820
- Size
  
  50KB
- MD5
  
  2aeca2bcd7d4f8f548164fc6fd1008fc
- SHA1
  
  d1a2e30526930340a6ed227b41aae8cbf0fb6b48
- SHA256
  
  91ff5a9a2507ede4fc1bfda6bf228d659ff7dbd057ade71c5c3e5d3547116820
- SHA512
  
  bcd516c32468f715bbd81c27d76b6216c812cd1a4138d714c01a92d9ddb36f63bf690120462f74413a1a18b0cd5a38e71d2e24031ffa92003cc2e8016ffb71ff
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyDUdyGdyjnKwjzhjzr:6pWpBwchcwDNZjVj3
Score

9^/10

discovery ransomware
- Renames multiple (3660) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware