99a4a857a2d175e3973404ca2efaa6addda5d353c88cc081e9266e12b9b9d214 | Triage

Sharing

General

Target

99a4a857a2d175e3973404ca2efaa6addda5d353c88cc081e9266e12b9b9d214
Size

60KB
Sample

240919-plpaxayajh
MD5

5ff19500ea2a6f8c323552c5bcc3f073
SHA1

f7138b668ade31bb343e25ec84de3844cce9d4e5
SHA256

99a4a857a2d175e3973404ca2efaa6addda5d353c88cc081e9266e12b9b9d214
SHA512

b024266407e1043505c0bf726c384bcd73427de88d5e328d507d0d02baa25504b851da3eda000f5075209464a96813a77fea8fbde598d7f48b415066ee97a28e
SSDEEP

1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFs5j:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsL

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  99a4a857a2d175e3973404ca2efaa6addda5d353c88cc081e9266e12b9b9d214
- Size
  
  60KB
- MD5
  
  5ff19500ea2a6f8c323552c5bcc3f073
- SHA1
  
  f7138b668ade31bb343e25ec84de3844cce9d4e5
- SHA256
  
  99a4a857a2d175e3973404ca2efaa6addda5d353c88cc081e9266e12b9b9d214
- SHA512
  
  b024266407e1043505c0bf726c384bcd73427de88d5e328d507d0d02baa25504b851da3eda000f5075209464a96813a77fea8fbde598d7f48b415066ee97a28e
- SSDEEP
  
  1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFs5j:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsL
Score

9^/10

discovery ransomware
- Renames multiple (3694) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware