5e3c1635333756efc3b1cad649753e175c986284f748ff5c7e72d6a854a9d2c5 | Triage

Sharing

General

Target

5e3c1635333756efc3b1cad649753e175c986284f748ff5c7e72d6a854a9d2c5N
Size

55KB
Sample

240919-fh2x6asbnr
MD5

ffa8b66f8c550173b920d5657d538f40
SHA1

922de8387eb272ac6232429b09ab85f1f44eb056
SHA256

5e3c1635333756efc3b1cad649753e175c986284f748ff5c7e72d6a854a9d2c5
SHA512

3010de950b44f6dda845b7a1d918d58d6f0cee4ec17514a77ce27229b1f5932f93c43564c04c1df18aac0b7e4f077e5a5d77848ec9c23261dd988be6031c9bd4
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFkTfq9Tfq7h6hWh2hQ:W7ZppApBULcfpHLcfpyDc2ih6hWh2hQ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  5e3c1635333756efc3b1cad649753e175c986284f748ff5c7e72d6a854a9d2c5N
- Size
  
  55KB
- MD5
  
  ffa8b66f8c550173b920d5657d538f40
- SHA1
  
  922de8387eb272ac6232429b09ab85f1f44eb056
- SHA256
  
  5e3c1635333756efc3b1cad649753e175c986284f748ff5c7e72d6a854a9d2c5
- SHA512
  
  3010de950b44f6dda845b7a1d918d58d6f0cee4ec17514a77ce27229b1f5932f93c43564c04c1df18aac0b7e4f077e5a5d77848ec9c23261dd988be6031c9bd4
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFkTfq9Tfq7h6hWh2hQ:W7ZppApBULcfpHLcfpyDc2ih6hWh2hQ
Score

9^/10

discovery ransomware
- Renames multiple (3370) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware