04b2d1af1e989694b291206bdc63de759b702c0e0aebdd23d48433101432e0f6 | Triage

Sharing

General

Target

04b2d1af1e989694b291206bdc63de759b702c0e0aebdd23d48433101432e0f6N
Size

44KB
Sample

240928-tckctaterk
MD5

79c534f41de6a1b90ed5c4c8b4aa1380
SHA1

b44969b909bbe82a3efff03b694b3455ae25066b
SHA256

04b2d1af1e989694b291206bdc63de759b702c0e0aebdd23d48433101432e0f6
SHA512

8f13b2908db011ef705abdf5591291fdfde143ff6c975821c1842c880ab0707432da893705b7900785f5830a934f127b8e2c5fac24b275083cc71b8b1ed1a290
SSDEEP

768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsScc/:W7ZhA7pApM21LOA1LOl6vScc/

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  04b2d1af1e989694b291206bdc63de759b702c0e0aebdd23d48433101432e0f6N
- Size
  
  44KB
- MD5
  
  79c534f41de6a1b90ed5c4c8b4aa1380
- SHA1
  
  b44969b909bbe82a3efff03b694b3455ae25066b
- SHA256
  
  04b2d1af1e989694b291206bdc63de759b702c0e0aebdd23d48433101432e0f6
- SHA512
  
  8f13b2908db011ef705abdf5591291fdfde143ff6c975821c1842c880ab0707432da893705b7900785f5830a934f127b8e2c5fac24b275083cc71b8b1ed1a290
- SSDEEP
  
  768:W7BlphA7pARFbhM0Kkq81LOyq81LOl6Sl5lsScc/:W7ZhA7pApM21LOA1LOl6vScc/
Score

9^/10

discovery ransomware
- Renames multiple (719) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware