d4eed3f0cd33293c88f64a6bc9f9fdd33c3a429821989699d88290147c9885a3 | Triage

Sharing

General

Target

d4eed3f0cd33293c88f64a6bc9f9fdd33c3a429821989699d88290147c9885a3N
Size

90KB
Sample

240919-hgm4qawbpl
MD5

116ec9d4c789364f72812ad8b64e2ec0
SHA1

e5d50d7e18c71babe10da3fb34bc0b3f6c3941b5
SHA256

d4eed3f0cd33293c88f64a6bc9f9fdd33c3a429821989699d88290147c9885a3
SHA512

96d4b4585bdda2e1224f9f16b1dd748c800983034561cc1833e82338954b9f36b0995c5aeb03eb50953ce8b5ecdb965210fc244304be7d2a09daf670a28249c8
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggqSXrA:69WpQE0zxgjrA

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d4eed3f0cd33293c88f64a6bc9f9fdd33c3a429821989699d88290147c9885a3N
- Size
  
  90KB
- MD5
  
  116ec9d4c789364f72812ad8b64e2ec0
- SHA1
  
  e5d50d7e18c71babe10da3fb34bc0b3f6c3941b5
- SHA256
  
  d4eed3f0cd33293c88f64a6bc9f9fdd33c3a429821989699d88290147c9885a3
- SHA512
  
  96d4b4585bdda2e1224f9f16b1dd748c800983034561cc1833e82338954b9f36b0995c5aeb03eb50953ce8b5ecdb965210fc244304be7d2a09daf670a28249c8
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggqSXrA:69WpQE0zxgjrA
Score

9^/10

discovery ransomware
- Renames multiple (3100) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware