9f4c89e66a4eaa5ad785b50ae304933b3701f2ee7497c83eb8e7039f5c06a4e3 | Triage

Sharing

General

Target

9f4c89e66a4eaa5ad785b50ae304933b3701f2ee7497c83eb8e7039f5c06a4e3N
Size

6.1MB
Sample

240919-dnqe7syamp
MD5

729ac7abf9103e3e41ef6f04be3cf270
SHA1

6886e09cb681975d9a0020d31cb0a224b009b8f7
SHA256

9f4c89e66a4eaa5ad785b50ae304933b3701f2ee7497c83eb8e7039f5c06a4e3
SHA512

42eb1ebdf0f96d34e38875d68cc0810d09b087fdc4857e4566167c6f8e7d84b32bc06a143b63673da809a0c43a9df4176bae0c2c733aba73db180101f05b6f9a
SSDEEP

98304:cQKrgDhNYesxS8jRPGKGjeZnbanHoIbDDIYNv+E1LbRiq57nki7+:YGUesxJj6eYn3+ERbRiqBb+

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9f4c89e66a4eaa5ad785b50ae304933b3701f2ee7497c83eb8e7039f5c06a4e3N
- Size
  
  6.1MB
- MD5
  
  729ac7abf9103e3e41ef6f04be3cf270
- SHA1
  
  6886e09cb681975d9a0020d31cb0a224b009b8f7
- SHA256
  
  9f4c89e66a4eaa5ad785b50ae304933b3701f2ee7497c83eb8e7039f5c06a4e3
- SHA512
  
  42eb1ebdf0f96d34e38875d68cc0810d09b087fdc4857e4566167c6f8e7d84b32bc06a143b63673da809a0c43a9df4176bae0c2c733aba73db180101f05b6f9a
- SSDEEP
  
  98304:cQKrgDhNYesxS8jRPGKGjeZnbanHoIbDDIYNv+E1LbRiq57nki7+:YGUesxJj6eYn3+ERbRiqBb+
Score

9^/10

discovery ransomware
- Renames multiple (195) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware