d4b0db9c340c3b0dc5a8875cbe03f2d5e9bb32d7e2524faa7f2ff61677f5595c | Triage

Sharing

General

Target

d4b0db9c340c3b0dc5a8875cbe03f2d5e9bb32d7e2524faa7f2ff61677f5595cN
Size

98KB
Sample

240918-k5kdvatdmj
MD5

5e08bc039f6052a6a7ab194dbe3ee5b0
SHA1

8ec87987d4f4f5beb12e31be2f4739ff5c4e9435
SHA256

d4b0db9c340c3b0dc5a8875cbe03f2d5e9bb32d7e2524faa7f2ff61677f5595c
SHA512

afe6949f707b4a657895abc05998dca7d02abbe08ff31415442fc7637888dee99e0f887deb8c26b1035844a11c9a9449905a3420791d72863ce3f08eb5da329f
SSDEEP

3072:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9ileq9:RqlIyFESWu0SWu86jYleq9

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d4b0db9c340c3b0dc5a8875cbe03f2d5e9bb32d7e2524faa7f2ff61677f5595cN
- Size
  
  98KB
- MD5
  
  5e08bc039f6052a6a7ab194dbe3ee5b0
- SHA1
  
  8ec87987d4f4f5beb12e31be2f4739ff5c4e9435
- SHA256
  
  d4b0db9c340c3b0dc5a8875cbe03f2d5e9bb32d7e2524faa7f2ff61677f5595c
- SHA512
  
  afe6949f707b4a657895abc05998dca7d02abbe08ff31415442fc7637888dee99e0f887deb8c26b1035844a11c9a9449905a3420791d72863ce3f08eb5da329f
- SSDEEP
  
  3072:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL9ileq9:RqlIyFESWu0SWu86jYleq9
Score

9^/10

discovery ransomware
- Renames multiple (3152) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware