23bdd3077d6021ed0964fb8c40e3386f58ca72decd3db8fc8ee3be3cda491cd1 | Triage

Sharing

General

Target

23bdd3077d6021ed0964fb8c40e3386f58ca72decd3db8fc8ee3be3cda491cd1N
Size

55KB
Sample

241005-vvytlasdqb
MD5

e3b4e0fb32694b90d248a786dd954be0
SHA1

59c2c6269254c0b133ce8ef3d072bee600034e85
SHA256

23bdd3077d6021ed0964fb8c40e3386f58ca72decd3db8fc8ee3be3cda491cd1
SHA512

a3e7e64552ffd36455e5bc3313e080f0ed516f4036993080bc004f9178c546c840e2ef254184aa42ce79dc4f5b80288b1e88e36d3e6b181dc22606662cb42131
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhiKQetQeFj/:W7ZppApBULcfpHLcfpyDZPQqfXtXp

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  23bdd3077d6021ed0964fb8c40e3386f58ca72decd3db8fc8ee3be3cda491cd1N
- Size
  
  55KB
- MD5
  
  e3b4e0fb32694b90d248a786dd954be0
- SHA1
  
  59c2c6269254c0b133ce8ef3d072bee600034e85
- SHA256
  
  23bdd3077d6021ed0964fb8c40e3386f58ca72decd3db8fc8ee3be3cda491cd1
- SHA512
  
  a3e7e64552ffd36455e5bc3313e080f0ed516f4036993080bc004f9178c546c840e2ef254184aa42ce79dc4f5b80288b1e88e36d3e6b181dc22606662cb42131
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhiKQetQeFj/:W7ZppApBULcfpHLcfpyDZPQqfXtXp
Score

9^/10

discovery ransomware
- Renames multiple (3204) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware