0a4ecb55ecd42ae6d1a5cab5bae11769866059ad6c3fa5eafd2c39f253c6b639 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0a4ecb55ecd42ae6d1a5cab5bae11769866059ad6c3fa5eafd2c39f253c6b639
Size

69KB
Sample

240913-w5cvjssclh
MD5

733516ad16c738f5d9de91db90fac0a1
SHA1

eb6c043028a138f03b6019d3436cf5d18ee199b1
SHA256

0a4ecb55ecd42ae6d1a5cab5bae11769866059ad6c3fa5eafd2c39f253c6b639
SHA512

cd80be5968009819b5b8773a6ab4258771059534e8000a2905a90749e560cc882e7aa2499d0f639074f889c2213a6e9493a1884ba936ffce469e054b06146a79
SSDEEP

1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPhAx:6pWpUnDXxXD

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0a4ecb55ecd42ae6d1a5cab5bae11769866059ad6c3fa5eafd2c39f253c6b639
- Size
  
  69KB
- MD5
  
  733516ad16c738f5d9de91db90fac0a1
- SHA1
  
  eb6c043028a138f03b6019d3436cf5d18ee199b1
- SHA256
  
  0a4ecb55ecd42ae6d1a5cab5bae11769866059ad6c3fa5eafd2c39f253c6b639
- SHA512
  
  cd80be5968009819b5b8773a6ab4258771059534e8000a2905a90749e560cc882e7aa2499d0f639074f889c2213a6e9493a1884ba936ffce469e054b06146a79
- SSDEEP
  
  1536:W7ZppApwEwnmJARJAaXxXNJdkCKPuJdkCKPhAx:6pWpUnDXxXD
Score

9^/10

discovery ransomware
- Renames multiple (3508) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware