a5b6139ff63b1a14761e4c40ba5821adc51d32284e7861b46780af8dcbaf0919 | Triage

Sharing

General

Target

a5b6139ff63b1a14761e4c40ba5821adc51d32284e7861b46780af8dcbaf0919N
Size

53KB
Sample

240921-cescrszdrb
MD5

5fcb6ca2d03198c904e0f998ecab5700
SHA1

de3ce9601d1e2be0b2cb3a8a6fdc6570014ed6b6
SHA256

a5b6139ff63b1a14761e4c40ba5821adc51d32284e7861b46780af8dcbaf0919
SHA512

a2789c43965ae0b3752dc4dc51bba55915c6a8f51d2c3e3f292458c94f0a09a22d6dc5e9dae1217a657fbb83878a0c4eba653d21614457c54ac0b5524bb34150
SSDEEP

768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATNyIHAJvHAJLMF/XqsGDGEEXBwX:W7ZhA7dABJJZENTNy3m

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a5b6139ff63b1a14761e4c40ba5821adc51d32284e7861b46780af8dcbaf0919N
- Size
  
  53KB
- MD5
  
  5fcb6ca2d03198c904e0f998ecab5700
- SHA1
  
  de3ce9601d1e2be0b2cb3a8a6fdc6570014ed6b6
- SHA256
  
  a5b6139ff63b1a14761e4c40ba5821adc51d32284e7861b46780af8dcbaf0919
- SHA512
  
  a2789c43965ae0b3752dc4dc51bba55915c6a8f51d2c3e3f292458c94f0a09a22d6dc5e9dae1217a657fbb83878a0c4eba653d21614457c54ac0b5524bb34150
- SSDEEP
  
  768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATNyIHAJvHAJLMF/XqsGDGEEXBwX:W7ZhA7dABJJZENTNy3m
Score

9^/10

discovery ransomware
- Renames multiple (3304) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware