402fcb56b9cd0dc4c1ac3ecfb03cd30295bc7a53a25778fab1d0d94bc57175ac | Triage

Sharing

General

Target

402fcb56b9cd0dc4c1ac3ecfb03cd30295bc7a53a25778fab1d0d94bc57175acN
Size

113KB
Sample

240919-pb17qaxekf
MD5

e3a06958f9cd796a342ae779e6070c50
SHA1

43e500f718188fffcd33725a51e2270a564d7f07
SHA256

402fcb56b9cd0dc4c1ac3ecfb03cd30295bc7a53a25778fab1d0d94bc57175ac
SHA512

db0e332de29640f3480cde8392770ad4c8c6765ba2feeaf61fa0195270051be97987744e1bedcc9218f5226d883303d22d550df3a30df7efa06bfa9da0c2a6a8
SSDEEP

1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggEpVp+ESIXosbosz1vKX/8KX/B:6e7WpHIyRF9ESWu0SWuDmmSIjXM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  402fcb56b9cd0dc4c1ac3ecfb03cd30295bc7a53a25778fab1d0d94bc57175acN
- Size
  
  113KB
- MD5
  
  e3a06958f9cd796a342ae779e6070c50
- SHA1
  
  43e500f718188fffcd33725a51e2270a564d7f07
- SHA256
  
  402fcb56b9cd0dc4c1ac3ecfb03cd30295bc7a53a25778fab1d0d94bc57175ac
- SHA512
  
  db0e332de29640f3480cde8392770ad4c8c6765ba2feeaf61fa0195270051be97987744e1bedcc9218f5226d883303d22d550df3a30df7efa06bfa9da0c2a6a8
- SSDEEP
  
  1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggEpVp+ESIXosbosz1vKX/8KX/B:6e7WpHIyRF9ESWu0SWuDmmSIjXM
Score

9^/10

discovery ransomware
- Renames multiple (2840) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware