31f88864e4e8b0e69707bcdc2aa9ba45a360e5b7bfa056308d1f874b9667691a | Triage

Sharing

General

Target

31f88864e4e8b0e69707bcdc2aa9ba45a360e5b7bfa056308d1f874b9667691aN
Size

100KB
Sample

241003-lh19hszbrh
MD5

f4e71bd16dd33b01fe3e7942185adb30
SHA1

79cc62e578fa400fbbc7f448cdc3dae6a73a5e49
SHA256

31f88864e4e8b0e69707bcdc2aa9ba45a360e5b7bfa056308d1f874b9667691a
SHA512

c31de266e6123b55e16833777e8518473ebec1bd10f0ac70c3e83857c1eaee4e65017c8ece487e9c7b1e8af29d906401e5c47a7a86ef194ccb3447a8449a6691
SSDEEP

1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggEpVp+ESIXosbosP42:6e7WpHIyRF9ESWu0SWuDmmSIjX1

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  31f88864e4e8b0e69707bcdc2aa9ba45a360e5b7bfa056308d1f874b9667691aN
- Size
  
  100KB
- MD5
  
  f4e71bd16dd33b01fe3e7942185adb30
- SHA1
  
  79cc62e578fa400fbbc7f448cdc3dae6a73a5e49
- SHA256
  
  31f88864e4e8b0e69707bcdc2aa9ba45a360e5b7bfa056308d1f874b9667691a
- SHA512
  
  c31de266e6123b55e16833777e8518473ebec1bd10f0ac70c3e83857c1eaee4e65017c8ece487e9c7b1e8af29d906401e5c47a7a86ef194ccb3447a8449a6691
- SSDEEP
  
  1536:W7ZhA7pApH9QHwtRF9ESWu0SWutlggalggEpVp+ESIXosbosP42:6e7WpHIyRF9ESWu0SWuDmmSIjX1
Score

9^/10

discovery ransomware
- Renames multiple (2958) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware