686712e98fd3fe952d4bdf0b2fd3c73e2fb666b79dfa1baab7c87a81587f4049 | Triage

Sharing

General

Target

686712e98fd3fe952d4bdf0b2fd3c73e2fb666b79dfa1baab7c87a81587f4049N
Size

45KB
Sample

240919-dc3amaxekl
MD5

1cf529f45ef10cd1ba6733720595d3f0
SHA1

dded3e3de941f409c4b2730129d99104fd8372df
SHA256

686712e98fd3fe952d4bdf0b2fd3c73e2fb666b79dfa1baab7c87a81587f4049
SHA512

71df3bff8fc31d99aca73e397d2e8012c24be9a51908b6a5642bb65654352e878f10f18eabc615f258d6f93b4a225677710adbd60b971cb27f3c09c5592d63f6
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJL1CQC3:W7ZppApBULcfpHLcfpyDuCQC3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  686712e98fd3fe952d4bdf0b2fd3c73e2fb666b79dfa1baab7c87a81587f4049N
- Size
  
  45KB
- MD5
  
  1cf529f45ef10cd1ba6733720595d3f0
- SHA1
  
  dded3e3de941f409c4b2730129d99104fd8372df
- SHA256
  
  686712e98fd3fe952d4bdf0b2fd3c73e2fb666b79dfa1baab7c87a81587f4049
- SHA512
  
  71df3bff8fc31d99aca73e397d2e8012c24be9a51908b6a5642bb65654352e878f10f18eabc615f258d6f93b4a225677710adbd60b971cb27f3c09c5592d63f6
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJL1CQC3:W7ZppApBULcfpHLcfpyDuCQC3
Score

9^/10

discovery ransomware
- Renames multiple (3371) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware