be446baf9921f26afee68b0a7ef47a204f7f4a2e9d9a8d85458b818b81fbf354 | Triage

Sharing

General

Target

be446baf9921f26afee68b0a7ef47a204f7f4a2e9d9a8d85458b818b81fbf354N
Size

94KB
Sample

240921-3j14kszgpg
MD5

fdd889ca28313b525ef5593253cf9270
SHA1

f5dced140595bddfbc7c9f492038cda144cc8ef3
SHA256

be446baf9921f26afee68b0a7ef47a204f7f4a2e9d9a8d85458b818b81fbf354
SHA512

af8061fdaddaff4deeef20d7e5221b4bb163ed2e61f0def1b864c13e80ff7cef22c88eda541dc29d5981325583499239fa2c4742f039305334bab6e16899e21d
SSDEEP

1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689iladwEbdwEV:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL97

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  be446baf9921f26afee68b0a7ef47a204f7f4a2e9d9a8d85458b818b81fbf354N
- Size
  
  94KB
- MD5
  
  fdd889ca28313b525ef5593253cf9270
- SHA1
  
  f5dced140595bddfbc7c9f492038cda144cc8ef3
- SHA256
  
  be446baf9921f26afee68b0a7ef47a204f7f4a2e9d9a8d85458b818b81fbf354
- SHA512
  
  af8061fdaddaff4deeef20d7e5221b4bb163ed2e61f0def1b864c13e80ff7cef22c88eda541dc29d5981325583499239fa2c4742f039305334bab6e16899e21d
- SSDEEP
  
  1536:W7ZhA7pApH9QHwtRF9ESWu0SWujodsodaNovTW+SPL+cycWAF689iladwEbdwEV:6e7WpHIyRF9ESWu0SWujKsKRsP9fVL97
Score

9^/10

discovery ransomware
- Renames multiple (2960) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware