f7953bd202694321b393583c936d4d63f5d07993dc0847541fb346ba5beae9fd | Triage

Sharing

General

Target

f7953bd202694321b393583c936d4d63f5d07993dc0847541fb346ba5beae9fdN
Size

42KB
Sample

240919-rajmdssalf
MD5

dafbae086e37b421c3b02e274fbba830
SHA1

5317b03bb4165a4f0373550ee508ee8b8246d4e4
SHA256

f7953bd202694321b393583c936d4d63f5d07993dc0847541fb346ba5beae9fd
SHA512

6d4b67861071aee92ea08b7642aeaa21d31a3af51536175e4c58461cf293fe334c6ff9a9c05dd731520af4d3aaf0912d6e85a4b4027a736ee6603c3a989008df
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrSLmnw1i/JN68gK1i/JN68ge:W7BlpppARFbhknrSLmwslsX

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f7953bd202694321b393583c936d4d63f5d07993dc0847541fb346ba5beae9fdN
- Size
  
  42KB
- MD5
  
  dafbae086e37b421c3b02e274fbba830
- SHA1
  
  5317b03bb4165a4f0373550ee508ee8b8246d4e4
- SHA256
  
  f7953bd202694321b393583c936d4d63f5d07993dc0847541fb346ba5beae9fd
- SHA512
  
  6d4b67861071aee92ea08b7642aeaa21d31a3af51536175e4c58461cf293fe334c6ff9a9c05dd731520af4d3aaf0912d6e85a4b4027a736ee6603c3a989008df
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBN2TQ1nrSLmnw1i/JN68gK1i/JN68ge:W7BlpppARFbhknrSLmwslsX
Score

9^/10

discovery ransomware
- Renames multiple (3430) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware