09048bc4633299692a032e40cf8c29925ad4973fc3191ef1b70b93a9cfb5ccc8 | Triage

Sharing

General

Target

09048bc4633299692a032e40cf8c29925ad4973fc3191ef1b70b93a9cfb5ccc8N.bin
Size

90KB
Sample

240919-gsefaavarj
MD5

536c859b7bf8548f8eaf0e5cf4409c60
SHA1

4b2016ce32c1b18f875e9a2eea982c895478f556
SHA256

09048bc4633299692a032e40cf8c29925ad4973fc3191ef1b70b93a9cfb5ccc8
SHA512

72df4077e81969e7b5ad85407e12b21fd41c4ae3d759ec4cdf8a0e865821b324707366a4463b675593dc87b2c125fbfe13cfd225348f0f97fc253dec2d64cd3e
SSDEEP

1536:/7ZQpApze+eJfFpsJOfFpsJ5DQ4PN54PNrqXqo:9QWpze+eJfFpsJOfFpsJ5D7WA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  09048bc4633299692a032e40cf8c29925ad4973fc3191ef1b70b93a9cfb5ccc8N.bin
- Size
  
  90KB
- MD5
  
  536c859b7bf8548f8eaf0e5cf4409c60
- SHA1
  
  4b2016ce32c1b18f875e9a2eea982c895478f556
- SHA256
  
  09048bc4633299692a032e40cf8c29925ad4973fc3191ef1b70b93a9cfb5ccc8
- SHA512
  
  72df4077e81969e7b5ad85407e12b21fd41c4ae3d759ec4cdf8a0e865821b324707366a4463b675593dc87b2c125fbfe13cfd225348f0f97fc253dec2d64cd3e
- SSDEEP
  
  1536:/7ZQpApze+eJfFpsJOfFpsJ5DQ4PN54PNrqXqo:9QWpze+eJfFpsJOfFpsJ5D7WA
Score

9^/10

discovery ransomware
- Renames multiple (3490) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware