2cb06b8c00162b4b500839435fc5c18e063411e6a6d8592f3024738efd12f03e | Triage

Sharing

General

Target

d025fdc861c3c1f390a533a391a20300N
Size

43KB
Sample

240913-2gexwstcja
MD5

d025fdc861c3c1f390a533a391a20300
SHA1

d9858e7d739f5fc67fbb2e70e869b721709fc2f7
SHA256

2cb06b8c00162b4b500839435fc5c18e063411e6a6d8592f3024738efd12f03e
SHA512

6e01c6465b4b21b2b5a5cd4b6b67a73b3c52f8ef8e60dea75f9036c2f9f6eb2d709978fb760295d241c4810abf0c6a4e88d5f9242bebda4541f504af351fbeca
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFw0pwBn:W7Blp2sspARFbhVgNNHpQRNHpQRq

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d025fdc861c3c1f390a533a391a20300N
- Size
  
  43KB
- MD5
  
  d025fdc861c3c1f390a533a391a20300
- SHA1
  
  d9858e7d739f5fc67fbb2e70e869b721709fc2f7
- SHA256
  
  2cb06b8c00162b4b500839435fc5c18e063411e6a6d8592f3024738efd12f03e
- SHA512
  
  6e01c6465b4b21b2b5a5cd4b6b67a73b3c52f8ef8e60dea75f9036c2f9f6eb2d709978fb760295d241c4810abf0c6a4e88d5f9242bebda4541f504af351fbeca
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvYD/DggNNHpQKMNHpQKMFw0pwBn:W7Blp2sspARFbhVgNNHpQRNHpQRq
Score

9^/10

discovery ransomware
- Renames multiple (3306) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware