915143c5bf7711efcdb5ec4108a7f00b09f191a7c6becd6153a0aae954e3a193 | Triage

Sharing

General

Target

915143c5bf7711efcdb5ec4108a7f00b09f191a7c6becd6153a0aae954e3a193N
Size

47KB
Sample

240918-lb98vatanh
MD5

7df9cb950eb855f0329d9dd1be9a9c70
SHA1

7c4a6514d7d03f4a7a01003169c0e1b72a3354eb
SHA256

915143c5bf7711efcdb5ec4108a7f00b09f191a7c6becd6153a0aae954e3a193
SHA512

593faa3e99da960c2643178bfd95cc3c799df52a5678e67f8450bfdb9e1b1237a1d13890bb6ee32c68071bc1fbca6e25527e3c4879d438c67a0bb45738d81285
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/FYzyKbNzzyKbNUjZ2S8W8Hoz:/7BlpQpARFbhCWK9WKKj38W8Hoz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  915143c5bf7711efcdb5ec4108a7f00b09f191a7c6becd6153a0aae954e3a193N
- Size
  
  47KB
- MD5
  
  7df9cb950eb855f0329d9dd1be9a9c70
- SHA1
  
  7c4a6514d7d03f4a7a01003169c0e1b72a3354eb
- SHA256
  
  915143c5bf7711efcdb5ec4108a7f00b09f191a7c6becd6153a0aae954e3a193
- SHA512
  
  593faa3e99da960c2643178bfd95cc3c799df52a5678e67f8450bfdb9e1b1237a1d13890bb6ee32c68071bc1fbca6e25527e3c4879d438c67a0bb45738d81285
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/FYzyKbNzzyKbNUjZ2S8W8Hoz:/7BlpQpARFbhCWK9WKKj38W8Hoz
Score

9^/10

discovery ransomware
- Renames multiple (3443) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware