9c6e167ebd4f7f7891c09b37ceb17c05ffe46fa6b38c3e2189c8352239a3a52b | Triage

Sharing

General

Target

9c6e167ebd4f7f7891c09b37ceb17c05ffe46fa6b38c3e2189c8352239a3a52bN
Size

83KB
Sample

240919-qvadsa1bpg
MD5

03f94153aa8bde1f9477565746280cb0
SHA1

17bc996dd177c074c97811e5bcf5c8c89c536830
SHA256

9c6e167ebd4f7f7891c09b37ceb17c05ffe46fa6b38c3e2189c8352239a3a52b
SHA512

bf7cba1f404c57f9863501dd597bc4f7299dcbf9fa2d91d97dcc30b6e6348df2e2cd0d1f5a6700d2b901c7edfc38ec47aee41ab536f44659991531ade1a017d4
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggy:69WpQE0zxgy

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9c6e167ebd4f7f7891c09b37ceb17c05ffe46fa6b38c3e2189c8352239a3a52bN
- Size
  
  83KB
- MD5
  
  03f94153aa8bde1f9477565746280cb0
- SHA1
  
  17bc996dd177c074c97811e5bcf5c8c89c536830
- SHA256
  
  9c6e167ebd4f7f7891c09b37ceb17c05ffe46fa6b38c3e2189c8352239a3a52b
- SHA512
  
  bf7cba1f404c57f9863501dd597bc4f7299dcbf9fa2d91d97dcc30b6e6348df2e2cd0d1f5a6700d2b901c7edfc38ec47aee41ab536f44659991531ade1a017d4
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKggy:69WpQE0zxgy
Score

9^/10

discovery ransomware
- Renames multiple (3207) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware