ab51fa9f4d50a3cbd471f9fb4d5a7c233f7440eb57b6c29caeeeb214456a34ce | Triage

Sharing

General

Target

ab51fa9f4d50a3cbd471f9fb4d5a7c233f7440eb57b6c29caeeeb214456a34ceN
Size

82KB
Sample

240919-gnpqfstfkb
MD5

4fd76c76717c1065ffbdbc303ec3b1c0
SHA1

400387f3f2e9fcd8ac7ebf83db546e240fa82a5e
SHA256

ab51fa9f4d50a3cbd471f9fb4d5a7c233f7440eb57b6c29caeeeb214456a34ce
SHA512

5c0bf42a159895649bb18691734f95089336ce40e38c5f4d423a54421fc87b93d900ef323c7d48463d28127cc092d76eac290b72b20f727beb7527db47db4bf8
SSDEEP

1536:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlf9xwK+e:6e7WpRaSljZD

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ab51fa9f4d50a3cbd471f9fb4d5a7c233f7440eb57b6c29caeeeb214456a34ceN
- Size
  
  82KB
- MD5
  
  4fd76c76717c1065ffbdbc303ec3b1c0
- SHA1
  
  400387f3f2e9fcd8ac7ebf83db546e240fa82a5e
- SHA256
  
  ab51fa9f4d50a3cbd471f9fb4d5a7c233f7440eb57b6c29caeeeb214456a34ce
- SHA512
  
  5c0bf42a159895649bb18691734f95089336ce40e38c5f4d423a54421fc87b93d900ef323c7d48463d28127cc092d76eac290b72b20f727beb7527db47db4bf8
- SSDEEP
  
  1536:W7ZhA7pApvOsOKM4HBhaGwOQ54xEIjlf9xwK+e:6e7WpRaSljZD
Score

9^/10

discovery ransomware
- Renames multiple (3505) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware