223d14a1c3c5e158b671bb0cf62c83e6dd028a882a58ac57479681c2485dd195 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

223d14a1c3c5e158b671bb0cf62c83e6dd028a882a58ac57479681c2485dd195N
Size

99KB
Sample

240918-2rvfbsxemp
MD5

1bcd100835574e397137bc5a11c36a00
SHA1

1f5f0d28a5c386faa4c00f41a8bdd77bae3ab3a6
SHA256

223d14a1c3c5e158b671bb0cf62c83e6dd028a882a58ac57479681c2485dd195
SHA512

b48248cdc21ea5f8ac209d3bdf1a8a60e105570fe0f8e1ef5acc3905a4f2c6203616615277aac188dac33ca4210a862c176b2d6ce54b8b21e665caddc7c4d7db
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBs:PqFF2Ie+efsL1UabUaG

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  223d14a1c3c5e158b671bb0cf62c83e6dd028a882a58ac57479681c2485dd195N
- Size
  
  99KB
- MD5
  
  1bcd100835574e397137bc5a11c36a00
- SHA1
  
  1f5f0d28a5c386faa4c00f41a8bdd77bae3ab3a6
- SHA256
  
  223d14a1c3c5e158b671bb0cf62c83e6dd028a882a58ac57479681c2485dd195
- SHA512
  
  b48248cdc21ea5f8ac209d3bdf1a8a60e105570fe0f8e1ef5acc3905a4f2c6203616615277aac188dac33ca4210a862c176b2d6ce54b8b21e665caddc7c4d7db
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBs:PqFF2Ie+efsL1UabUaG
Score

9^/10

discovery ransomware
- Renames multiple (3455) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware