8b6ba1a95bd6b519922697a54ad56cc64315a6038cd18aef28e386af05017fc9 | Triage

Sharing

General

Target

8b6ba1a95bd6b519922697a54ad56cc64315a6038cd18aef28e386af05017fc9N
Size

46KB
Sample

240928-jmy9lsvapm
MD5

b0344c3c6185e623a03da36003ddcdb0
SHA1

42e32f222475f8477a780467c516db3713bff3bd
SHA256

8b6ba1a95bd6b519922697a54ad56cc64315a6038cd18aef28e386af05017fc9
SHA512

6fcef601c347ac768e2ab555690364725fea08ec01c9e7f6dd1237d2c935a40c2dbbb55532b2ddebe4447ddb092ceb21a4a1c63fad62175757ca0395dba3f317
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFcdyGdy+zWzS//rM8:W7ZppApBULcfpHLcfpyDcdyGdya7M8

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8b6ba1a95bd6b519922697a54ad56cc64315a6038cd18aef28e386af05017fc9N
- Size
  
  46KB
- MD5
  
  b0344c3c6185e623a03da36003ddcdb0
- SHA1
  
  42e32f222475f8477a780467c516db3713bff3bd
- SHA256
  
  8b6ba1a95bd6b519922697a54ad56cc64315a6038cd18aef28e386af05017fc9
- SHA512
  
  6fcef601c347ac768e2ab555690364725fea08ec01c9e7f6dd1237d2c935a40c2dbbb55532b2ddebe4447ddb092ceb21a4a1c63fad62175757ca0395dba3f317
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFcdyGdy+zWzS//rM8:W7ZppApBULcfpHLcfpyDcdyGdya7M8
Score

9^/10

discovery ransomware
- Renames multiple (3202) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware