4085c350168fd844880ade0fb4706835747376542d8c5f20d160e19508209602 | Triage

Sharing

General

Target

4085c350168fd844880ade0fb4706835747376542d8c5f20d160e19508209602N
Size

43KB
Sample

240919-ere93szgng
MD5

b326895e923c9bfc099e99ad2ee87230
SHA1

fcc4aa12b9b4ef9827a47853172c407ac0204234
SHA256

4085c350168fd844880ade0fb4706835747376542d8c5f20d160e19508209602
SHA512

5da25a77b74d5dabfd6a2b6d0c27b8e45ec43eb69702559b104138be0f70e8ba8fb45903fccaa414a5c5ecd0a9005fb35fb53780f3012154cb2adffbc6b62744
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IIqd:/7BlpQpARFbhNIiJwsJwwnZn

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4085c350168fd844880ade0fb4706835747376542d8c5f20d160e19508209602N
- Size
  
  43KB
- MD5
  
  b326895e923c9bfc099e99ad2ee87230
- SHA1
  
  fcc4aa12b9b4ef9827a47853172c407ac0204234
- SHA256
  
  4085c350168fd844880ade0fb4706835747376542d8c5f20d160e19508209602
- SHA512
  
  5da25a77b74d5dabfd6a2b6d0c27b8e45ec43eb69702559b104138be0f70e8ba8fb45903fccaa414a5c5ecd0a9005fb35fb53780f3012154cb2adffbc6b62744
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0IIqd:/7BlpQpARFbhNIiJwsJwwnZn
Score

9^/10

discovery ransomware
- Renames multiple (3284) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware