45cced02005d4a40e0e5fb3064ae46c64b7210c70a0628c90deff4a15f1f4642 | Triage

Sharing

General

Target

45cced02005d4a40e0e5fb3064ae46c64b7210c70a0628c90deff4a15f1f4642
Size

168KB
Sample

240927-xrchasxckf
MD5

5259dd176f790bf589b6cc770ff33d6e
SHA1

b999509fed334cf3bc149796e115ec6c39e05793
SHA256

45cced02005d4a40e0e5fb3064ae46c64b7210c70a0628c90deff4a15f1f4642
SHA512

808995dce53b8614e1253548f5a0c997aeffcc3278a88d18174f0ba968aa57159a3913d814ce6ca839d2c7147d5cabc13d69682a06355be64a197801a937a744
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBt:RqKB+tOkWKR0iJ0h

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  45cced02005d4a40e0e5fb3064ae46c64b7210c70a0628c90deff4a15f1f4642
- Size
  
  168KB
- MD5
  
  5259dd176f790bf589b6cc770ff33d6e
- SHA1
  
  b999509fed334cf3bc149796e115ec6c39e05793
- SHA256
  
  45cced02005d4a40e0e5fb3064ae46c64b7210c70a0628c90deff4a15f1f4642
- SHA512
  
  808995dce53b8614e1253548f5a0c997aeffcc3278a88d18174f0ba968aa57159a3913d814ce6ca839d2c7147d5cabc13d69682a06355be64a197801a937a744
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBt:RqKB+tOkWKR0iJ0h
Score

9^/10

discovery ransomware
- Renames multiple (484) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware