815e2a476bb685c33fbaff3ba4e320173ae49aab496fe88b2a7370329d928678 | Triage

Sharing

General

Target

815e2a476bb685c33fbaff3ba4e320173ae49aab496fe88b2a7370329d928678N
Size

63KB
Sample

240927-z592tssdmh
MD5

5aee855eba8096c759a0d4ce318ba640
SHA1

8e9e020210867ec90c1247c1600c5cf7a13ea8a0
SHA256

815e2a476bb685c33fbaff3ba4e320173ae49aab496fe88b2a7370329d928678
SHA512

6a9e8d13e3745c17209e9d2e8a4fa170f7d18a3aa68f4a495840c3ac2ef7c24f81550e93ebe1e36cc303dfe2bc84492726e740f76c27516104426c18cda0c180
SSDEEP

1536:W7ZhA7pApw03vR03vcltdtSsU8Tu8Tmwzwycp:6e7WpwYRYUtdtSsBcycp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  815e2a476bb685c33fbaff3ba4e320173ae49aab496fe88b2a7370329d928678N
- Size
  
  63KB
- MD5
  
  5aee855eba8096c759a0d4ce318ba640
- SHA1
  
  8e9e020210867ec90c1247c1600c5cf7a13ea8a0
- SHA256
  
  815e2a476bb685c33fbaff3ba4e320173ae49aab496fe88b2a7370329d928678
- SHA512
  
  6a9e8d13e3745c17209e9d2e8a4fa170f7d18a3aa68f4a495840c3ac2ef7c24f81550e93ebe1e36cc303dfe2bc84492726e740f76c27516104426c18cda0c180
- SSDEEP
  
  1536:W7ZhA7pApw03vR03vcltdtSsU8Tu8Tmwzwycp:6e7WpwYRYUtdtSsBcycp
Score

9^/10

discovery ransomware
- Renames multiple (3204) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware