41de29faffc4b67bb3e0671a884f3e107b22d209497826429d633c3f6cfb63bb | Triage

Sharing

General

Target

41de29faffc4b67bb3e0671a884f3e107b22d209497826429d633c3f6cfb63bbN
Size

96KB
Sample

241004-krt15aygqh
MD5

7aa46021e85c81c3348be7c2fab53670
SHA1

cbe23a93464811b6c696880d5f70d95bc7bc7638
SHA256

41de29faffc4b67bb3e0671a884f3e107b22d209497826429d633c3f6cfb63bb
SHA512

11cff102d35a6d79be0ad9cd56d2344f746561844cd46360bc4d32f5e1599aed7849e840fa4dbe4e76eef5f8968f7fdd0678db3d8fd8308840cc12ab89875bd1
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBl:PqFF2Ie+eFYDBv3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  41de29faffc4b67bb3e0671a884f3e107b22d209497826429d633c3f6cfb63bbN
- Size
  
  96KB
- MD5
  
  7aa46021e85c81c3348be7c2fab53670
- SHA1
  
  cbe23a93464811b6c696880d5f70d95bc7bc7638
- SHA256
  
  41de29faffc4b67bb3e0671a884f3e107b22d209497826429d633c3f6cfb63bb
- SHA512
  
  11cff102d35a6d79be0ad9cd56d2344f746561844cd46360bc4d32f5e1599aed7849e840fa4dbe4e76eef5f8968f7fdd0678db3d8fd8308840cc12ab89875bd1
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBl:PqFF2Ie+eFYDBv3
Score

9^/10

discovery ransomware
- Renames multiple (2886) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware