392be4b653042aeea1e98b5e30aab7f3821e3772676acf19297f0e397f8b1b0f | Triage

Sharing

General

Target

392be4b653042aeea1e98b5e30aab7f3821e3772676acf19297f0e397f8b1b0fN
Size

40KB
Sample

240921-b6sbeazarc
MD5

6aa9bcc221358ba3a3f24c6ef42ad7a0
SHA1

4773b174b45846a92ef012256b042b1e3849d146
SHA256

392be4b653042aeea1e98b5e30aab7f3821e3772676acf19297f0e397f8b1b0f
SHA512

dcf4bcb3cecb8b68aaf0cbb9d50481456d384135bed21cb467cf4459c948d1462c4cb04cb3c829795c3ed51cf65e4816aae9a16438f0c23f9f00bcdca8523c44
SSDEEP

384:yBs7Br5xjL8AgA71FbhvsKvbT4/Pbf89taJrcT4/Pbf89taJrK7V:/7BlpQpARFbhVvbM2MI

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  392be4b653042aeea1e98b5e30aab7f3821e3772676acf19297f0e397f8b1b0fN
- Size
  
  40KB
- MD5
  
  6aa9bcc221358ba3a3f24c6ef42ad7a0
- SHA1
  
  4773b174b45846a92ef012256b042b1e3849d146
- SHA256
  
  392be4b653042aeea1e98b5e30aab7f3821e3772676acf19297f0e397f8b1b0f
- SHA512
  
  dcf4bcb3cecb8b68aaf0cbb9d50481456d384135bed21cb467cf4459c948d1462c4cb04cb3c829795c3ed51cf65e4816aae9a16438f0c23f9f00bcdca8523c44
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvsKvbT4/Pbf89taJrcT4/Pbf89taJrK7V:/7BlpQpARFbhVvbM2MI
Score

9^/10

discovery ransomware
- Renames multiple (3259) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware