71b5b56654af57d78aba1e03032b25284bccb84f3618f84d0d4d024cbfdaeaba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71b5b56654af57d78aba1e03032b25284bccb84f3618f84d0d4d024cbfdaeabaN
Size

59KB
Sample

240921-yrfema1bkn
MD5

af894611a6717ae51c43dd64fe0f4470
SHA1

be92f036545fbf3cc4996330bb7aec535a913aa0
SHA256

71b5b56654af57d78aba1e03032b25284bccb84f3618f84d0d4d024cbfdaeaba
SHA512

54541bffc3ec4eb56604f51b5d1c26b409bb95f8b2c1750d8689dff962818a21fb442103e5cb1c895fea2c7e462f8a16b3578ec0e2b4f36ab19b56ee8efc0e69
SSDEEP

768:/7BlpQpARFbhNIiJwsJwwnZGynyQNrpIci1xupIci1xe:/7ZQpAplJwsJwwnQ4dWrCWrC

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  71b5b56654af57d78aba1e03032b25284bccb84f3618f84d0d4d024cbfdaeabaN
- Size
  
  59KB
- MD5
  
  af894611a6717ae51c43dd64fe0f4470
- SHA1
  
  be92f036545fbf3cc4996330bb7aec535a913aa0
- SHA256
  
  71b5b56654af57d78aba1e03032b25284bccb84f3618f84d0d4d024cbfdaeaba
- SHA512
  
  54541bffc3ec4eb56604f51b5d1c26b409bb95f8b2c1750d8689dff962818a21fb442103e5cb1c895fea2c7e462f8a16b3578ec0e2b4f36ab19b56ee8efc0e69
- SSDEEP
  
  768:/7BlpQpARFbhNIiJwsJwwnZGynyQNrpIci1xupIci1xe:/7ZQpAplJwsJwwnQ4dWrCWrC
Score

9^/10

discovery ransomware
- Renames multiple (3222) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware