0650cf62e21bd40289244ee45c7fff5c38c197dccec66ec1bffd3034e86784e9 | Triage

Sharing

General

Target

0650cf62e21bd40289244ee45c7fff5c38c197dccec66ec1bffd3034e86784e9N
Size

50KB
Sample

241003-abwvnstfpl
MD5

64b0523d604cae526f9c59870030d2e0
SHA1

d285845588a52b83df889bba5051ea23c15e7059
SHA256

0650cf62e21bd40289244ee45c7fff5c38c197dccec66ec1bffd3034e86784e9
SHA512

9bc73972b4aa9e118eb45392d45bef39656ce7acf0e94737ece4522cf77b5c642637e3b14f708834d86ecb8bb1b70141dbd6cc8f50229376c633e59f7c1e405f
SSDEEP

1536:W7ZppApBULcfpHLcfpyD56Bm7f3ZiVDn3ZiVD1:6pWpBwchcwD4m+i1

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  0650cf62e21bd40289244ee45c7fff5c38c197dccec66ec1bffd3034e86784e9N
- Size
  
  50KB
- MD5
  
  64b0523d604cae526f9c59870030d2e0
- SHA1
  
  d285845588a52b83df889bba5051ea23c15e7059
- SHA256
  
  0650cf62e21bd40289244ee45c7fff5c38c197dccec66ec1bffd3034e86784e9
- SHA512
  
  9bc73972b4aa9e118eb45392d45bef39656ce7acf0e94737ece4522cf77b5c642637e3b14f708834d86ecb8bb1b70141dbd6cc8f50229376c633e59f7c1e405f
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyD56Bm7f3ZiVDn3ZiVD1:6pWpBwchcwD4m+i1
Score

9^/10

discovery ransomware
- Renames multiple (3341) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware