4f021406625b76aa208d4f8ab32ac788ed3610a6ab37251ff0e5d633e2800eaf | Triage

Sharing

General

Target

4ad44813485ea991e2fbe2d194e9d530N
Size

100KB
Sample

240914-x66dxs1gkq
MD5

4ad44813485ea991e2fbe2d194e9d530
SHA1

e13dafe24bf6cd5a1546c15dc6c5e28690af4a41
SHA256

4f021406625b76aa208d4f8ab32ac788ed3610a6ab37251ff0e5d633e2800eaf
SHA512

3265831edb6d6c59bb24d983df553d5df227a61dcfd1314e989a7014cc1b1cb1d3db2d17209d2edfb16bf82494a33b46ccdec1f463d2b11e6d09126731ed6163
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyB0:PqFF2Ie+efsL1UabUaC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4ad44813485ea991e2fbe2d194e9d530N
- Size
  
  100KB
- MD5
  
  4ad44813485ea991e2fbe2d194e9d530
- SHA1
  
  e13dafe24bf6cd5a1546c15dc6c5e28690af4a41
- SHA256
  
  4f021406625b76aa208d4f8ab32ac788ed3610a6ab37251ff0e5d633e2800eaf
- SHA512
  
  3265831edb6d6c59bb24d983df553d5df227a61dcfd1314e989a7014cc1b1cb1d3db2d17209d2edfb16bf82494a33b46ccdec1f463d2b11e6d09126731ed6163
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyB0:PqFF2Ie+efsL1UabUaC
Score

9^/10

discovery ransomware
- Renames multiple (2839) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware