53bf9652f4a495fd5dba45ff6fcb0d014878efb299ab7e5bcd86f96c7ba9e93f | Triage

Sharing

General

Target

53bf9652f4a495fd5dba45ff6fcb0d014878efb299ab7e5bcd86f96c7ba9e93fN
Size

50KB
Sample

240928-hzvxaashkp
MD5

b558092992cc7ba3e4dc4d1e19f03b90
SHA1

dc67c538fbd937f1e0d8a3046cd7b575dcaa2be3
SHA256

53bf9652f4a495fd5dba45ff6fcb0d014878efb299ab7e5bcd86f96c7ba9e93f
SHA512

c97204942c7b5a8df8cb6a75d083078be8d6bea5a67a460155df6ab382d2ff77dd1fe4ff02c11f44595f4ca17e7f13c33a76b3d63365444951cac4653b104c62
SSDEEP

384:yBs7Br5xjL8AgA71Fbhvszw/Evd5BvhzaM9mSIEvd5BvhzaM9mSqZsSb9hZs3V7j:/7BlpQpARFbhvEXBwzEXBwLtW

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  53bf9652f4a495fd5dba45ff6fcb0d014878efb299ab7e5bcd86f96c7ba9e93fN
- Size
  
  50KB
- MD5
  
  b558092992cc7ba3e4dc4d1e19f03b90
- SHA1
  
  dc67c538fbd937f1e0d8a3046cd7b575dcaa2be3
- SHA256
  
  53bf9652f4a495fd5dba45ff6fcb0d014878efb299ab7e5bcd86f96c7ba9e93f
- SHA512
  
  c97204942c7b5a8df8cb6a75d083078be8d6bea5a67a460155df6ab382d2ff77dd1fe4ff02c11f44595f4ca17e7f13c33a76b3d63365444951cac4653b104c62
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhvszw/Evd5BvhzaM9mSIEvd5BvhzaM9mSqZsSb9hZs3V7j:/7BlpQpARFbhvEXBwzEXBwLtW
Score

9^/10

discovery ransomware
- Renames multiple (3270) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware