646a910265a809c94222ebad693665f6353bf7b7c8d32515b09e7f1fd55dbb5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

646a910265a809c94222ebad693665f6353bf7b7c8d32515b09e7f1fd55dbb5eN
Size

224KB
Sample

241003-lagj5swapj
MD5

693f937bfbfcb458cb959674e2851130
SHA1

a249015dcafb35c35b6209ac9a4fab71f4c715fe
SHA256

646a910265a809c94222ebad693665f6353bf7b7c8d32515b09e7f1fd55dbb5e
SHA512

6a3085e1432b685f7c71209e925f429e7759ab3bb96ef5fb5d0dade50d841eccae26ba190314807994decd0152bd9975fe2e38daf43ec8ffd17d643b981711c1
SSDEEP

6144:RqlIyFESWu0SWu86jYYp+Yt3qh0FgD9wNExaEw8RfHM:tyW6jYYwYt3qhhiN1wRfHM

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  646a910265a809c94222ebad693665f6353bf7b7c8d32515b09e7f1fd55dbb5eN
- Size
  
  224KB
- MD5
  
  693f937bfbfcb458cb959674e2851130
- SHA1
  
  a249015dcafb35c35b6209ac9a4fab71f4c715fe
- SHA256
  
  646a910265a809c94222ebad693665f6353bf7b7c8d32515b09e7f1fd55dbb5e
- SHA512
  
  6a3085e1432b685f7c71209e925f429e7759ab3bb96ef5fb5d0dade50d841eccae26ba190314807994decd0152bd9975fe2e38daf43ec8ffd17d643b981711c1
- SSDEEP
  
  6144:RqlIyFESWu0SWu86jYYp+Yt3qh0FgD9wNExaEw8RfHM:tyW6jYYwYt3qhhiN1wRfHM
Score

9^/10

discovery ransomware
- Renames multiple (2631) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware