9a67a288034a645144cbceec969d4dae38a3907db787a3a6f1e7f4ddc7a0f300 | Triage

Sharing

General

Target

9a67a288034a645144cbceec969d4dae38a3907db787a3a6f1e7f4ddc7a0f300N
Size

91KB
Sample

240921-2p9r8sycjb
MD5

52fe60eb0d38a40a48514f92182e3e60
SHA1

6cc0d04f2a28013d3eb5409c5141e8e176f0f5f8
SHA256

9a67a288034a645144cbceec969d4dae38a3907db787a3a6f1e7f4ddc7a0f300
SHA512

cd6e14ce5eb6ebd4083c250cff5e931d918b9880c3ce16168ebdd2f78bfddb3228376b17557426daa3027651450d00dbc99b62c03fbb7925deb73df0f10c3184
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhf:6pWpUFpEhLfyBtPf50FWkFpPDze/qFs+

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9a67a288034a645144cbceec969d4dae38a3907db787a3a6f1e7f4ddc7a0f300N
- Size
  
  91KB
- MD5
  
  52fe60eb0d38a40a48514f92182e3e60
- SHA1
  
  6cc0d04f2a28013d3eb5409c5141e8e176f0f5f8
- SHA256
  
  9a67a288034a645144cbceec969d4dae38a3907db787a3a6f1e7f4ddc7a0f300
- SHA512
  
  cd6e14ce5eb6ebd4083c250cff5e931d918b9880c3ce16168ebdd2f78bfddb3228376b17557426daa3027651450d00dbc99b62c03fbb7925deb73df0f10c3184
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhf:6pWpUFpEhLfyBtPf50FWkFpPDze/qFs+
Score

9^/10

discovery ransomware
- Renames multiple (2986) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware