3db626b1223b208ca7df8fdae16814509e415b6c4227de11826c24bab0ea1377 | Triage

Sharing

General

Target

3db626b1223b208ca7df8fdae16814509e415b6c4227de11826c24bab0ea1377N
Size

38KB
Sample

240918-ksja1ssgpj
MD5

b60a94dbe886161fced9693b4c331a70
SHA1

305e662e530caac532264898f8dc755b4bd1d863
SHA256

3db626b1223b208ca7df8fdae16814509e415b6c4227de11826c24bab0ea1377
SHA512

135360e2162a1de66c03a236782c22fa8ea59130146d3625476164d15637321624fff16b06a645d31df3f6f6eebfcc9cd72bf0dfde549bcadc044965cb3a575b
SSDEEP

192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXUXHz9g5JHz9g5Dabb4:GBt7Br5xjL7lAgA71Fbhvt3bu5c5D/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  3db626b1223b208ca7df8fdae16814509e415b6c4227de11826c24bab0ea1377N
- Size
  
  38KB
- MD5
  
  b60a94dbe886161fced9693b4c331a70
- SHA1
  
  305e662e530caac532264898f8dc755b4bd1d863
- SHA256
  
  3db626b1223b208ca7df8fdae16814509e415b6c4227de11826c24bab0ea1377
- SHA512
  
  135360e2162a1de66c03a236782c22fa8ea59130146d3625476164d15637321624fff16b06a645d31df3f6f6eebfcc9cd72bf0dfde549bcadc044965cb3a575b
- SSDEEP
  
  192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXUXHz9g5JHz9g5Dabb4:GBt7Br5xjL7lAgA71Fbhvt3bu5c5D/
Score

9^/10

discovery ransomware
- Renames multiple (3285) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware