817fc3d6bdfc9be88172001389edcf345ed2ec64a560becdb8d982c64fdb0655 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

817fc3d6bdfc9be88172001389edcf345ed2ec64a560becdb8d982c64fdb0655N
Size

73KB
Sample

240921-pzmz1atalm
MD5

6623a9674cc14de7affbe9c0107f6a50
SHA1

6da8d8334f666d9e80c3f8bf7caebedb50bf132d
SHA256

817fc3d6bdfc9be88172001389edcf345ed2ec64a560becdb8d982c64fdb0655
SHA512

58510fbb7dfde4ecd30708645ccb462347bbf2c5d535eb0a391bf2c239e831e2a35d18e827984bf779c70da6e8ce58cc70ef8209b186680c5366940d22a1bac0
SSDEEP

1536:W7Z2sspApkZrZ4+fU7lK1lKT8/8yNCNkOP+UDpOP+UD1:62ssWpcU7lK1lKgknXYXx

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  817fc3d6bdfc9be88172001389edcf345ed2ec64a560becdb8d982c64fdb0655N
- Size
  
  73KB
- MD5
  
  6623a9674cc14de7affbe9c0107f6a50
- SHA1
  
  6da8d8334f666d9e80c3f8bf7caebedb50bf132d
- SHA256
  
  817fc3d6bdfc9be88172001389edcf345ed2ec64a560becdb8d982c64fdb0655
- SHA512
  
  58510fbb7dfde4ecd30708645ccb462347bbf2c5d535eb0a391bf2c239e831e2a35d18e827984bf779c70da6e8ce58cc70ef8209b186680c5366940d22a1bac0
- SSDEEP
  
  1536:W7Z2sspApkZrZ4+fU7lK1lKT8/8yNCNkOP+UDpOP+UD1:62ssWpcU7lK1lKgknXYXx
Score

9^/10

discovery ransomware
- Renames multiple (3312) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware