6a5d0d5da90387e53c8a3cc5ae254c01a82a7356a274d7eb781ec191220390c4 | Triage

Sharing

General

Target

6a5d0d5da90387e53c8a3cc5ae254c01a82a7356a274d7eb781ec191220390c4
Size

79KB
Sample

240929-2cmryatakl
MD5

bf10d1decb74572a4b7ae6c1e2607647
SHA1

28a74eb57ae4641d8010fce176c04cadf59c98aa
SHA256

6a5d0d5da90387e53c8a3cc5ae254c01a82a7356a274d7eb781ec191220390c4
SHA512

24e97b21057e3a08cf757a3f054d58c83e9608c50615a4dee6612ada9a4e802e8a7a4f000f4f88290c5c66e0b1a17e41c70fc0785108dd13963fac0230e504a4
SSDEEP

1536:W7Z2sspApkZrZ4+fU7lK1lKT8/8yNCNzdwEbdwEMb2:62ssWpcU7lK1lKgkMb2

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6a5d0d5da90387e53c8a3cc5ae254c01a82a7356a274d7eb781ec191220390c4
- Size
  
  79KB
- MD5
  
  bf10d1decb74572a4b7ae6c1e2607647
- SHA1
  
  28a74eb57ae4641d8010fce176c04cadf59c98aa
- SHA256
  
  6a5d0d5da90387e53c8a3cc5ae254c01a82a7356a274d7eb781ec191220390c4
- SHA512
  
  24e97b21057e3a08cf757a3f054d58c83e9608c50615a4dee6612ada9a4e802e8a7a4f000f4f88290c5c66e0b1a17e41c70fc0785108dd13963fac0230e504a4
- SSDEEP
  
  1536:W7Z2sspApkZrZ4+fU7lK1lKT8/8yNCNzdwEbdwEMb2:62ssWpcU7lK1lKgkMb2
Score

9^/10

discovery ransomware
- Renames multiple (3507) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware