bf57b85ab19d5c2b97d9b30a16945890eb10a8a9385ed55df9bca4229eab63ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf57b85ab19d5c2b97d9b30a16945890eb10a8a9385ed55df9bca4229eab63baN
Size

37KB
Sample

240927-vtrznasekp
MD5

79f24fe05dd4b52094c54da85e391cd0
SHA1

395204551ff8a16b2235b7c5128436b0e9feaeff
SHA256

bf57b85ab19d5c2b97d9b30a16945890eb10a8a9385ed55df9bca4229eab63ba
SHA512

3c1d7e6f6337f1bf216364a4b037f123939157f0826592d3edd0205a1415170209a05b2b1bb56ebfd12e53ffcc6c90b1e8d8f109bf1265a1918c0bfba4a6c7c0
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lty:W7ZhA7pApM21LOA1LOl6Ay

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  bf57b85ab19d5c2b97d9b30a16945890eb10a8a9385ed55df9bca4229eab63baN
- Size
  
  37KB
- MD5
  
  79f24fe05dd4b52094c54da85e391cd0
- SHA1
  
  395204551ff8a16b2235b7c5128436b0e9feaeff
- SHA256
  
  bf57b85ab19d5c2b97d9b30a16945890eb10a8a9385ed55df9bca4229eab63ba
- SHA512
  
  3c1d7e6f6337f1bf216364a4b037f123939157f0826592d3edd0205a1415170209a05b2b1bb56ebfd12e53ffcc6c90b1e8d8f109bf1265a1918c0bfba4a6c7c0
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lty:W7ZhA7pApM21LOA1LOl6Ay
Score

9^/10

discovery ransomware
- Renames multiple (3359) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware