79e004808609579c0c0143f3f614fec37dcaf71a6c8ad41dcfa73c5047b77976 | Triage

Sharing

General

Target

79e004808609579c0c0143f3f614fec37dcaf71a6c8ad41dcfa73c5047b77976N
Size

39KB
Sample

241002-qnttvasbng
MD5

9f3e06180fd6ae1fb88a17b6d3be6a30
SHA1

c3250317a7a3c5d0dd40f5bf3029cb205b9b84a8
SHA256

79e004808609579c0c0143f3f614fec37dcaf71a6c8ad41dcfa73c5047b77976
SHA512

33d8dbe2dccd23f46a44bb008bf5332af56f9c672819309b97719685dfc93c87323610e4bdbe704fd0e13114cc339503500b48065a03b4c7e81a3f9ae0a8ec24
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxjc8P8dzNNlNN+3:yBs7Br5xjL8AgA71Fbhv/F1UXNHNWV

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  79e004808609579c0c0143f3f614fec37dcaf71a6c8ad41dcfa73c5047b77976N
- Size
  
  39KB
- MD5
  
  9f3e06180fd6ae1fb88a17b6d3be6a30
- SHA1
  
  c3250317a7a3c5d0dd40f5bf3029cb205b9b84a8
- SHA256
  
  79e004808609579c0c0143f3f614fec37dcaf71a6c8ad41dcfa73c5047b77976
- SHA512
  
  33d8dbe2dccd23f46a44bb008bf5332af56f9c672819309b97719685dfc93c87323610e4bdbe704fd0e13114cc339503500b48065a03b4c7e81a3f9ae0a8ec24
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxjc8P8dzNNlNN+3:yBs7Br5xjL8AgA71Fbhv/F1UXNHNWV
Score

9^/10

discovery ransomware
- Renames multiple (3393) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware