14d887ad9b21f01ee66f37bf974542b6a423eb4e809aa8d349f753e232e4bc1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

14d887ad9b21f01ee66f37bf974542b6a423eb4e809aa8d349f753e232e4bc1eN
Size

42KB
Sample

240921-cy22ba1cnb
MD5

14b284dcd32623207f6f3f0017f81110
SHA1

4b101a0ef8196059ad8b9a7dd1a8fcb487d5b586
SHA256

14d887ad9b21f01ee66f37bf974542b6a423eb4e809aa8d349f753e232e4bc1e
SHA512

77723e2123fc70f5379be94add1440028c815319f56bf3d6a25b31b5bce4783c58d43edd821646194202bf4645473a209ca0b8beb5c8edec23fe63ee15d713b4
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxjc8P8TN8n8Cd4f:yBs7Br5xjL8AgA71Fbhv/F1Ue8CdUdT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  14d887ad9b21f01ee66f37bf974542b6a423eb4e809aa8d349f753e232e4bc1eN
- Size
  
  42KB
- MD5
  
  14b284dcd32623207f6f3f0017f81110
- SHA1
  
  4b101a0ef8196059ad8b9a7dd1a8fcb487d5b586
- SHA256
  
  14d887ad9b21f01ee66f37bf974542b6a423eb4e809aa8d349f753e232e4bc1e
- SHA512
  
  77723e2123fc70f5379be94add1440028c815319f56bf3d6a25b31b5bce4783c58d43edd821646194202bf4645473a209ca0b8beb5c8edec23fe63ee15d713b4
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxjc8P8TN8n8Cd4f:yBs7Br5xjL8AgA71Fbhv/F1Ue8CdUdT
Score

9^/10

discovery ransomware
- Renames multiple (335) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware