a20d0f61aa6376f9e572caa7f8676cfd2902691e13562cf7d10e78d8234689d0 | Triage

Sharing

General

Target

a20d0f61aa6376f9e572caa7f8676cfd2902691e13562cf7d10e78d8234689d0N
Size

75KB
Sample

240919-f947latapg
MD5

1dce7d43aedb46eba0bf6f4309ee16b0
SHA1

b6efdc7c2c32fea9c171c2f82f557a832a089ce0
SHA256

a20d0f61aa6376f9e572caa7f8676cfd2902691e13562cf7d10e78d8234689d0
SHA512

4b92afe42601562140da43b5a093ed9ef80e7f78bfb3872fad6b5c59d21f5c0ce41fbb6dd114e70f757456ec758168447ab8d116fcd784a2ef11a84c814329d8
SSDEEP

768:W7Blp2sspARFbhJpupZ5pZ4+fTgTvlK1lK6RZR+8/8gClurYClurver+:W7Z2sspApkZrZ4+fU7lK1lKT8/8tT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a20d0f61aa6376f9e572caa7f8676cfd2902691e13562cf7d10e78d8234689d0N
- Size
  
  75KB
- MD5
  
  1dce7d43aedb46eba0bf6f4309ee16b0
- SHA1
  
  b6efdc7c2c32fea9c171c2f82f557a832a089ce0
- SHA256
  
  a20d0f61aa6376f9e572caa7f8676cfd2902691e13562cf7d10e78d8234689d0
- SHA512
  
  4b92afe42601562140da43b5a093ed9ef80e7f78bfb3872fad6b5c59d21f5c0ce41fbb6dd114e70f757456ec758168447ab8d116fcd784a2ef11a84c814329d8
- SSDEEP
  
  768:W7Blp2sspARFbhJpupZ5pZ4+fTgTvlK1lK6RZR+8/8gClurYClurver+:W7Z2sspApkZrZ4+fU7lK1lKT8/8tT
Score

9^/10

discovery ransomware
- Renames multiple (3704) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware