1aa19d68df0847dc5bef9b67162b27ce0c288303ed2c729ab9d25cf9cbab3dfe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1aa19d68df0847dc5bef9b67162b27ce0c288303ed2c729ab9d25cf9cbab3dfe
Size

43KB
Sample

240918-xr55lsydkp
MD5

0144df4fcc9f10633c713be754e02414
SHA1

66f2298e63248c702c2d46cb97abcb522e6716ae
SHA256

1aa19d68df0847dc5bef9b67162b27ce0c288303ed2c729ab9d25cf9cbab3dfe
SHA512

0011e8b34ba2961c99c881fe57f573b164de2de3eb3adc0c9e1ee2a338eb467ce4fe18a90679d5d3e0c4dae8ca66cbcf9262b58fe55d6c30cf2d21b74ce98f67
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZlwHkDpNi1xPwHkDpNi1xA:W7ZppApBULcfpHLcfpyDZlwOgrwOgs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  1aa19d68df0847dc5bef9b67162b27ce0c288303ed2c729ab9d25cf9cbab3dfe
- Size
  
  43KB
- MD5
  
  0144df4fcc9f10633c713be754e02414
- SHA1
  
  66f2298e63248c702c2d46cb97abcb522e6716ae
- SHA256
  
  1aa19d68df0847dc5bef9b67162b27ce0c288303ed2c729ab9d25cf9cbab3dfe
- SHA512
  
  0011e8b34ba2961c99c881fe57f573b164de2de3eb3adc0c9e1ee2a338eb467ce4fe18a90679d5d3e0c4dae8ca66cbcf9262b58fe55d6c30cf2d21b74ce98f67
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZlwHkDpNi1xPwHkDpNi1xA:W7ZppApBULcfpHLcfpyDZlwOgrwOgs
Score

9^/10

discovery ransomware
- Renames multiple (3779) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware