94a71825c6916bbde6d24e50a024f29f23b1a125302c2add3c231470dae8af3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94a71825c6916bbde6d24e50a024f29f23b1a125302c2add3c231470dae8af3fN
Size

43KB
Sample

241005-kr5gvszgqh
MD5

7ab8edf805c021a283508d5061fe4ba0
SHA1

ac267ef8eb3c8d40d0a303ecdcdc6778c33a8d7e
SHA256

94a71825c6916bbde6d24e50a024f29f23b1a125302c2add3c231470dae8af3f
SHA512

878685dacd7a1506b12a862718b97bbb238cc484f5dfb835a64348fdbc6e3b15d7752f166f9fe87e0795cb431485bcc87f5ad1dcda4139cb1d972128d2431e7e
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhiKJKGJKF:W7ZppApBULcfpHLcfpyDZPQqDJKGJKF

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  94a71825c6916bbde6d24e50a024f29f23b1a125302c2add3c231470dae8af3fN
- Size
  
  43KB
- MD5
  
  7ab8edf805c021a283508d5061fe4ba0
- SHA1
  
  ac267ef8eb3c8d40d0a303ecdcdc6778c33a8d7e
- SHA256
  
  94a71825c6916bbde6d24e50a024f29f23b1a125302c2add3c231470dae8af3f
- SHA512
  
  878685dacd7a1506b12a862718b97bbb238cc484f5dfb835a64348fdbc6e3b15d7752f166f9fe87e0795cb431485bcc87f5ad1dcda4139cb1d972128d2431e7e
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhiKJKGJKF:W7ZppApBULcfpHLcfpyDZPQqDJKGJKF
Score

9^/10

discovery ransomware
- Renames multiple (3276) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware