804b181c4e1c33d25d3e834334c49e28c151aaab06e2626d2deed7d3faa57ee6 | Triage

Sharing

General

Target

804b181c4e1c33d25d3e834334c49e28c151aaab06e2626d2deed7d3faa57ee6
Size

94KB
Sample

240918-3g82eayflb
MD5

76de963eb46d3f3ee3f259a84c3a7a44
SHA1

a5a771e5b0437a493f19672898a2db4147f95c51
SHA256

804b181c4e1c33d25d3e834334c49e28c151aaab06e2626d2deed7d3faa57ee6
SHA512

e70ac281bfcdf3caf0b883e2294d11476294e26b1c4baca65ef0858ad1e32f470fcef13cf9565c3e75e1f818a0c8d5a94ef7b1b59bc0b66ead90f4ed0c7b8891
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWXBfZWZK:6e7WpMaxeb0CYJ97lEYNR73e+eBSWXBT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  804b181c4e1c33d25d3e834334c49e28c151aaab06e2626d2deed7d3faa57ee6
- Size
  
  94KB
- MD5
  
  76de963eb46d3f3ee3f259a84c3a7a44
- SHA1
  
  a5a771e5b0437a493f19672898a2db4147f95c51
- SHA256
  
  804b181c4e1c33d25d3e834334c49e28c151aaab06e2626d2deed7d3faa57ee6
- SHA512
  
  e70ac281bfcdf3caf0b883e2294d11476294e26b1c4baca65ef0858ad1e32f470fcef13cf9565c3e75e1f818a0c8d5a94ef7b1b59bc0b66ead90f4ed0c7b8891
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+eTdsdYSWXBfZWZK:6e7WpMaxeb0CYJ97lEYNR73e+eBSWXBT
Score

9^/10

discovery ransomware
- Renames multiple (3555) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware