2526a201b0e20d1427d6ab1dcd07258c58d1b7b4c7df0a8d70fedae86cffd809 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73e5a8e89dff18775410eb2e16014b50N
Size

45KB
Sample

240914-bakaxsycjr
MD5

73e5a8e89dff18775410eb2e16014b50
SHA1

428c371ed756bab109148ad37e318755db0da6a5
SHA256

2526a201b0e20d1427d6ab1dcd07258c58d1b7b4c7df0a8d70fedae86cffd809
SHA512

26b0438d1f5a8e904ff3bd3bcca800fc63f6fe6ff1e2611621caee2d5b7cb23b3c2f9fed7b1650e00638135354e0d84a750ee7b4c92e25b70a79092de420cee2
SSDEEP

384:GBt7Br5xjL7lAgA71Fbhvt3e4S04SdHIl3DG71ul3DG7r+r+A:W7Blp9pARFbhs101OlkYlkr+r+A

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  73e5a8e89dff18775410eb2e16014b50N
- Size
  
  45KB
- MD5
  
  73e5a8e89dff18775410eb2e16014b50
- SHA1
  
  428c371ed756bab109148ad37e318755db0da6a5
- SHA256
  
  2526a201b0e20d1427d6ab1dcd07258c58d1b7b4c7df0a8d70fedae86cffd809
- SHA512
  
  26b0438d1f5a8e904ff3bd3bcca800fc63f6fe6ff1e2611621caee2d5b7cb23b3c2f9fed7b1650e00638135354e0d84a750ee7b4c92e25b70a79092de420cee2
- SSDEEP
  
  384:GBt7Br5xjL7lAgA71Fbhvt3e4S04SdHIl3DG71ul3DG7r+r+A:W7Blp9pARFbhs101OlkYlkr+r+A
Score

9^/10

discovery ransomware
- Renames multiple (3351) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware