d35f277cde36e5a9f767cd50b733d4c4446e5e820d31e5b66194f400a4affac9 | Triage

Sharing

General

Target

d35f277cde36e5a9f767cd50b733d4c4446e5e820d31e5b66194f400a4affac9N
Size

35KB
Sample

240918-kvklvsscpd
MD5

fce922c2b253f59d5bbfc73d9571aa60
SHA1

b8bcb36f2e37a0f0f45ecb6b493932af5f3ab97c
SHA256

d35f277cde36e5a9f767cd50b733d4c4446e5e820d31e5b66194f400a4affac9
SHA512

5003e1dcfb7f0e062d58f9bc7410030d560fce883afdf9ef66f50b208a4bd86a826da3833b6f6b5dc6f282ac6cd252691ce9f961af71ed87fe07d2c88c6dc284
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltg:W7ZhA7pApM21LOA1LOl6Ag

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d35f277cde36e5a9f767cd50b733d4c4446e5e820d31e5b66194f400a4affac9N
- Size
  
  35KB
- MD5
  
  fce922c2b253f59d5bbfc73d9571aa60
- SHA1
  
  b8bcb36f2e37a0f0f45ecb6b493932af5f3ab97c
- SHA256
  
  d35f277cde36e5a9f767cd50b733d4c4446e5e820d31e5b66194f400a4affac9
- SHA512
  
  5003e1dcfb7f0e062d58f9bc7410030d560fce883afdf9ef66f50b208a4bd86a826da3833b6f6b5dc6f282ac6cd252691ce9f961af71ed87fe07d2c88c6dc284
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltg:W7ZhA7pApM21LOA1LOl6Ag
Score

9^/10

discovery ransomware
- Renames multiple (3105) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware