25f4fcb2b34a25f8af78edf64c3be8e29678a202f4baa449e039d98b857435f1 | Triage

Sharing

General

Target

25f4fcb2b34a25f8af78edf64c3be8e29678a202f4baa449e039d98b857435f1N
Size

60KB
Sample

240919-ebc5sazcjp
MD5

bc284eff56fd7f82095e19b751f66200
SHA1

ce8cc2916a2406df00b566d394bccf6e06b3c3d3
SHA256

25f4fcb2b34a25f8af78edf64c3be8e29678a202f4baa449e039d98b857435f1
SHA512

daf84ca69af0273540293c2ec7368d6830ebb50e4c47e6b3601fb9754c8b7bc453cc48f7790c0acd60bc33789feb83ad80db1a1947954ce5bc5f0f0a46327299
SSDEEP

768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiC8r8UQ4NQ4k:W7ZhA7dABJJ7TTQoQD4UQ4NQ4k

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  25f4fcb2b34a25f8af78edf64c3be8e29678a202f4baa449e039d98b857435f1N
- Size
  
  60KB
- MD5
  
  bc284eff56fd7f82095e19b751f66200
- SHA1
  
  ce8cc2916a2406df00b566d394bccf6e06b3c3d3
- SHA256
  
  25f4fcb2b34a25f8af78edf64c3be8e29678a202f4baa449e039d98b857435f1
- SHA512
  
  daf84ca69af0273540293c2ec7368d6830ebb50e4c47e6b3601fb9754c8b7bc453cc48f7790c0acd60bc33789feb83ad80db1a1947954ce5bc5f0f0a46327299
- SSDEEP
  
  768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiC8r8UQ4NQ4k:W7ZhA7dABJJ7TTQoQD4UQ4NQ4k
Score

9^/10

discovery ransomware
- Renames multiple (3096) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware