f6b1f8ead8ff7428a04b36548e79c43bf232d62c48d1cb5f1b998925cb9ce58c | Triage

Sharing

General

Target

f6b1f8ead8ff7428a04b36548e79c43bf232d62c48d1cb5f1b998925cb9ce58cN
Size

43KB
Sample

240930-g79vqszhkr
MD5

4fa86b726a857b6eeb0bc31c815dc990
SHA1

5a7da7286be496bf8edf04f12665734e0e0e4e41
SHA256

f6b1f8ead8ff7428a04b36548e79c43bf232d62c48d1cb5f1b998925cb9ce58c
SHA512

596c993321716750c76ddbd91806e56877ddc19aec6d5a4f5cfc960b649a81aad7c2bd8a32c52d4c7d84a0953f14958817648e6968eb4a49dc911f300fa8af8e
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFcO1dp:W7ZppApBULcfpHLcfpyDPdp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f6b1f8ead8ff7428a04b36548e79c43bf232d62c48d1cb5f1b998925cb9ce58cN
- Size
  
  43KB
- MD5
  
  4fa86b726a857b6eeb0bc31c815dc990
- SHA1
  
  5a7da7286be496bf8edf04f12665734e0e0e4e41
- SHA256
  
  f6b1f8ead8ff7428a04b36548e79c43bf232d62c48d1cb5f1b998925cb9ce58c
- SHA512
  
  596c993321716750c76ddbd91806e56877ddc19aec6d5a4f5cfc960b649a81aad7c2bd8a32c52d4c7d84a0953f14958817648e6968eb4a49dc911f300fa8af8e
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFcO1dp:W7ZppApBULcfpHLcfpyDPdp
Score

9^/10

discovery ransomware
- Renames multiple (3410) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware