980a4ca33048b4d1a26cfe7d5f520b499cc7dda9fe07bfa0571668a9d94be3c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

980a4ca33048b4d1a26cfe7d5f520b499cc7dda9fe07bfa0571668a9d94be3c3
Size

56KB
Sample

241006-alx6gs1hla
MD5

7f36e9a272d0064f7b2c71b4972f2a21
SHA1

ef761eb4ce75691c5f6056d28e368dc3439f564a
SHA256

980a4ca33048b4d1a26cfe7d5f520b499cc7dda9fe07bfa0571668a9d94be3c3
SHA512

6dcd8bc1f22ea42c7a66bb54296cd621cd2dca71ff59a1eba87de775ff26196ffb2c56127731e518d36a3cb7598d3d98cf03b64e3ed3da647c199d5e8cb395e7
SSDEEP

384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iap3gyaHq9nwK8gvgyaHq9ni:/7BlpQpARFbhNIiJwsJwwnZap9QKQl

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  980a4ca33048b4d1a26cfe7d5f520b499cc7dda9fe07bfa0571668a9d94be3c3
- Size
  
  56KB
- MD5
  
  7f36e9a272d0064f7b2c71b4972f2a21
- SHA1
  
  ef761eb4ce75691c5f6056d28e368dc3439f564a
- SHA256
  
  980a4ca33048b4d1a26cfe7d5f520b499cc7dda9fe07bfa0571668a9d94be3c3
- SHA512
  
  6dcd8bc1f22ea42c7a66bb54296cd621cd2dca71ff59a1eba87de775ff26196ffb2c56127731e518d36a3cb7598d3d98cf03b64e3ed3da647c199d5e8cb395e7
- SSDEEP
  
  384:yBs7Br5xjL8AgA71Fbhv/Fzzwz72Jwuq2JwuR0U0Iap3gyaHq9nwK8gvgyaHq9ni:/7BlpQpARFbhNIiJwsJwwnZap9QKQl
Score

9^/10

discovery ransomware
- Renames multiple (3767) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware