75bff44e98f2c6453c75ab9ffc091f9a2c01885b83d9a365f7fc576dc908897e | Triage

Sharing

General

Target

75bff44e98f2c6453c75ab9ffc091f9a2c01885b83d9a365f7fc576dc908897eN
Size

85KB
Sample

240919-f5y5sataqp
MD5

3a931649b1eb6fad82014aa94efff390
SHA1

a7763220fbb634ad32349887af7ed6d978f1f836
SHA256

75bff44e98f2c6453c75ab9ffc091f9a2c01885b83d9a365f7fc576dc908897e
SHA512

5372516b4a2ba07d01cfcd36233fb872a9b54ba6931e2f2622fb8596fc5f8921bf6b6848ddf5bc45c169cb1f7fab26bf606bc027246f608e4aa8bc62635f45cd
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggBoFoP:69WpQE0zxgBmw

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  75bff44e98f2c6453c75ab9ffc091f9a2c01885b83d9a365f7fc576dc908897eN
- Size
  
  85KB
- MD5
  
  3a931649b1eb6fad82014aa94efff390
- SHA1
  
  a7763220fbb634ad32349887af7ed6d978f1f836
- SHA256
  
  75bff44e98f2c6453c75ab9ffc091f9a2c01885b83d9a365f7fc576dc908897e
- SHA512
  
  5372516b4a2ba07d01cfcd36233fb872a9b54ba6931e2f2622fb8596fc5f8921bf6b6848ddf5bc45c169cb1f7fab26bf606bc027246f608e4aa8bc62635f45cd
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggBoFoP:69WpQE0zxgBmw
Score

9^/10

discovery ransomware
- Renames multiple (3144) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware