c6aea4d1857c474c0299d9bfdb8431672716bab669df90e56ce3d7c3926afdbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6aea4d1857c474c0299d9bfdb8431672716bab669df90e56ce3d7c3926afdbeN
Size

5.0MB
Sample

240921-h6n3ba1cjq
MD5

bb1bea5339ddc79361adac177a552a80
SHA1

ff01f515e1b00b8018a42826425aba30985d5b9e
SHA256

c6aea4d1857c474c0299d9bfdb8431672716bab669df90e56ce3d7c3926afdbe
SHA512

0071316edea0f2c64611b84ca4d281378d0023a19494afad372e8c54db346c2d504797e86accebaff500a5318539eec02dc4e5be5d154803a087594f01f0c707
SSDEEP

98304:1owGkw4hS0tH1wz4WDYS8bhm5wqm69ngY7SqfW4S6zHP8:1hPtVwz4mYS6m5w89P9OX6g

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  c6aea4d1857c474c0299d9bfdb8431672716bab669df90e56ce3d7c3926afdbeN
- Size
  
  5.0MB
- MD5
  
  bb1bea5339ddc79361adac177a552a80
- SHA1
  
  ff01f515e1b00b8018a42826425aba30985d5b9e
- SHA256
  
  c6aea4d1857c474c0299d9bfdb8431672716bab669df90e56ce3d7c3926afdbe
- SHA512
  
  0071316edea0f2c64611b84ca4d281378d0023a19494afad372e8c54db346c2d504797e86accebaff500a5318539eec02dc4e5be5d154803a087594f01f0c707
- SSDEEP
  
  98304:1owGkw4hS0tH1wz4WDYS8bhm5wqm69ngY7SqfW4S6zHP8:1hPtVwz4mYS6m5w89P9OX6g
Score

9^/10

discovery ransomware
- Renames multiple (122) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware