6479f038f76533cffe44a0d3747137ad95cf1bc1a3f2c374f6ba24467ac7ac37 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6479f038f76533cffe44a0d3747137ad95cf1bc1a3f2c374f6ba24467ac7ac37N
Size

48KB
Sample

240919-vh7kzazfnp
MD5

1d0f099245a72d08e03cd8d657b104c0
SHA1

161cd86f19adcb567235ea7535d10f09885da854
SHA256

6479f038f76533cffe44a0d3747137ad95cf1bc1a3f2c374f6ba24467ac7ac37
SHA512

2f379a453ae8e298e1da93d03dc111ea9660fd04386b8902574715966d3db61aa1c6bb7f916c1291266a8fb8d6379e1b8d4fd7d2a9ec6862b4ece13b788f6b2a
SSDEEP

1536:W7ZppApBULcfpHLcfpXfxRfx6OBuH9uH8:6pWpBwchclf7fHuduc

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6479f038f76533cffe44a0d3747137ad95cf1bc1a3f2c374f6ba24467ac7ac37N
- Size
  
  48KB
- MD5
  
  1d0f099245a72d08e03cd8d657b104c0
- SHA1
  
  161cd86f19adcb567235ea7535d10f09885da854
- SHA256
  
  6479f038f76533cffe44a0d3747137ad95cf1bc1a3f2c374f6ba24467ac7ac37
- SHA512
  
  2f379a453ae8e298e1da93d03dc111ea9660fd04386b8902574715966d3db61aa1c6bb7f916c1291266a8fb8d6379e1b8d4fd7d2a9ec6862b4ece13b788f6b2a
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpXfxRfx6OBuH9uH8:6pWpBwchclf7fHuduc
Score

9^/10

discovery ransomware
- Renames multiple (3357) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware