cdf522b4a78700c2dd37635f0b6a42b5408ff4d8e4041bcda043f3161aa73f08 | Triage

Sharing

General

Target

cdf522b4a78700c2dd37635f0b6a42b5408ff4d8e4041bcda043f3161aa73f08N
Size

32KB
Sample

240919-f457pssgpa
MD5

5af89947b8a27a3a7bab1f242ecc39d0
SHA1

fb46b3db412a104c67ff0b1bbbfe1edec31366a0
SHA256

cdf522b4a78700c2dd37635f0b6a42b5408ff4d8e4041bcda043f3161aa73f08
SHA512

5010524893d037afacdef7de0cc2a48b2f48fa430d4ecf5d16c38f051a664465c73f4efa1af99a3c32e384172a5a4a690abde4388cabb9bc2837175c8677822b
SSDEEP

192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXVzB:GBt7Br5xjL7lAgA71Fbhvt3al

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  cdf522b4a78700c2dd37635f0b6a42b5408ff4d8e4041bcda043f3161aa73f08N
- Size
  
  32KB
- MD5
  
  5af89947b8a27a3a7bab1f242ecc39d0
- SHA1
  
  fb46b3db412a104c67ff0b1bbbfe1edec31366a0
- SHA256
  
  cdf522b4a78700c2dd37635f0b6a42b5408ff4d8e4041bcda043f3161aa73f08
- SHA512
  
  5010524893d037afacdef7de0cc2a48b2f48fa430d4ecf5d16c38f051a664465c73f4efa1af99a3c32e384172a5a4a690abde4388cabb9bc2837175c8677822b
- SSDEEP
  
  192:tACUADIY0Br5xjL/nznlAgAQmP1oynLb22vtI0zWXPXVzB:GBt7Br5xjL7lAgA71Fbhvt3al
Score

9^/10

discovery ransomware
- Renames multiple (3309) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware