0b8325058008b628131e93dbd56752232fb89ef028ca9cf61b14bc20d88f8c24 | Triage

Sharing

General

Target

0b8325058008b628131e93dbd56752232fb89ef028ca9cf61b14bc20d88f8c24N
Size

47KB
Sample

240918-2344xayapm
MD5

572972ce5df27e815863524394effd90
SHA1

be21caffab3126cbed91839ec8395a0ecd9ef4ee
SHA256

0b8325058008b628131e93dbd56752232fb89ef028ca9cf61b14bc20d88f8c24
SHA512

5239c21a3f46a0905d7374815506a21305eaf95c987a4c5c7930397563287260d08557a1b5903483ec6d997851477bd749810fb4d76f868984a263e30bb7b07f
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IdikK8:/7BlpQpARFbhNIiJwsJwwnZhK8

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0b8325058008b628131e93dbd56752232fb89ef028ca9cf61b14bc20d88f8c24N
- Size
  
  47KB
- MD5
  
  572972ce5df27e815863524394effd90
- SHA1
  
  be21caffab3126cbed91839ec8395a0ecd9ef4ee
- SHA256
  
  0b8325058008b628131e93dbd56752232fb89ef028ca9cf61b14bc20d88f8c24
- SHA512
  
  5239c21a3f46a0905d7374815506a21305eaf95c987a4c5c7930397563287260d08557a1b5903483ec6d997851477bd749810fb4d76f868984a263e30bb7b07f
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IdikK8:/7BlpQpARFbhNIiJwsJwwnZhK8
Score

9^/10

discovery ransomware
- Renames multiple (3378) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware