d616d5bc8f38d97c1e324e11e785040d3183f11c212e9c8c629be0cd9587437c | Triage

Sharing

General

Target

d616d5bc8f38d97c1e324e11e785040d3183f11c212e9c8c629be0cd9587437cN
Size

37KB
Sample

240919-gqw8batfrd
MD5

aee0036d5e74dc3c9bb63a3d6419d990
SHA1

916153131d1b8a311d81661e5ce2ed4e858ec2ae
SHA256

d616d5bc8f38d97c1e324e11e785040d3183f11c212e9c8c629be0cd9587437c
SHA512

076fb84d34e8aa6e7d0ebaa84d800ccdca6ea9a9070db013288e0efd9718a48ecfa94dbbcd8ca18797d62023acc23e67c95741451b04840a38fd87d35c5e7685
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltz4Q:W7ZhA7pApM21LOA1LOl6Az4Q

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d616d5bc8f38d97c1e324e11e785040d3183f11c212e9c8c629be0cd9587437cN
- Size
  
  37KB
- MD5
  
  aee0036d5e74dc3c9bb63a3d6419d990
- SHA1
  
  916153131d1b8a311d81661e5ce2ed4e858ec2ae
- SHA256
  
  d616d5bc8f38d97c1e324e11e785040d3183f11c212e9c8c629be0cd9587437c
- SHA512
  
  076fb84d34e8aa6e7d0ebaa84d800ccdca6ea9a9070db013288e0efd9718a48ecfa94dbbcd8ca18797d62023acc23e67c95741451b04840a38fd87d35c5e7685
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5ltz4Q:W7ZhA7pApM21LOA1LOl6Az4Q
Score

9^/10

discovery ransomware
- Renames multiple (3461) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware