6ef920e7d61af443f91ea265466fb91243e04e46107707df2508b00f6abff2d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ef920e7d61af443f91ea265466fb91243e04e46107707df2508b00f6abff2d1N
Size

54KB
Sample

240921-b93xbazdjj
MD5

01cb3c06f72f4b76823fd884cde12f60
SHA1

d899fd39ff612eb6d47405ce70c8a48e8fb147ef
SHA256

6ef920e7d61af443f91ea265466fb91243e04e46107707df2508b00f6abff2d1
SHA512

8be60c4d508c19b7230d45c0a7a4f508eec1c534393ac2719f4ee1aff89477f21db235b2e52b9d2001634baf4ede75d26892bbbc0e9b6c8580cad9763a289ebb
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iap3gyaHq9nwK8gvgyaHq9nl:/7BlpQpARFbhNIiJwsJwwnZap9QKQ3lk

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6ef920e7d61af443f91ea265466fb91243e04e46107707df2508b00f6abff2d1N
- Size
  
  54KB
- MD5
  
  01cb3c06f72f4b76823fd884cde12f60
- SHA1
  
  d899fd39ff612eb6d47405ce70c8a48e8fb147ef
- SHA256
  
  6ef920e7d61af443f91ea265466fb91243e04e46107707df2508b00f6abff2d1
- SHA512
  
  8be60c4d508c19b7230d45c0a7a4f508eec1c534393ac2719f4ee1aff89477f21db235b2e52b9d2001634baf4ede75d26892bbbc0e9b6c8580cad9763a289ebb
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iap3gyaHq9nwK8gvgyaHq9nl:/7BlpQpARFbhNIiJwsJwwnZap9QKQ3lk
Score

9^/10

discovery ransomware
- Renames multiple (3183) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware