972b8d121b9eb2569dee03cbf03f680803500e9ea686b84717c0a03e71602ab0 | Triage

Sharing

General

Target

972b8d121b9eb2569dee03cbf03f680803500e9ea686b84717c0a03e71602ab0N
Size

87KB
Sample

240918-ktf72ssckc
MD5

6be3e7fcccda9604496f7e4b30af0420
SHA1

c0fc97e4289867c68a0c0480492db55ccd704fc3
SHA256

972b8d121b9eb2569dee03cbf03f680803500e9ea686b84717c0a03e71602ab0
SHA512

860420ea9bc812dea6bcd4ae914f0544ee5ae7f902080a7114b90686ee5c8f137922aeffdb45fde236a077328e8c95d9268483c28c69956b06ddb72765be5ebd
SSDEEP

1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYgqe1:6e7WpMaxeb0CYJ97lEYNR73e+eGG1qe1

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  972b8d121b9eb2569dee03cbf03f680803500e9ea686b84717c0a03e71602ab0N
- Size
  
  87KB
- MD5
  
  6be3e7fcccda9604496f7e4b30af0420
- SHA1
  
  c0fc97e4289867c68a0c0480492db55ccd704fc3
- SHA256
  
  972b8d121b9eb2569dee03cbf03f680803500e9ea686b84717c0a03e71602ab0
- SHA512
  
  860420ea9bc812dea6bcd4ae914f0544ee5ae7f902080a7114b90686ee5c8f137922aeffdb45fde236a077328e8c95d9268483c28c69956b06ddb72765be5ebd
- SSDEEP
  
  1536:W7ZhA7pApMaxB4b0CYJ97lEVqNR7Yge+ejy0Wjy0WzYgqe1:6e7WpMaxeb0CYJ97lEYNR73e+eGG1qe1
Score

9^/10

discovery ransomware
- Renames multiple (2949) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware