4e7055bebe65f2b8123beea7a4cdf74ac7fbe8b71ef4a3d4f69b9522810ff8eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4e7055bebe65f2b8123beea7a4cdf74ac7fbe8b71ef4a3d4f69b9522810ff8eb
Size

50KB
Sample

241008-z9c8nasbpb
MD5

5cff3143b8267682e383831055c8f624
SHA1

9d6706413dc952dafbc61fdaf11ff2d274702c24
SHA256

4e7055bebe65f2b8123beea7a4cdf74ac7fbe8b71ef4a3d4f69b9522810ff8eb
SHA512

1a74baf6ee32f1fe479462f894cfba2c1560aa4d8991efac6b574f78e7fee70b6627932843062ba0a498aa313162d221a53d739fd70accac9915f8fe21609ce0
SSDEEP

768:W7Blp+pARFbhBgnKLMWK9WKD2N2LSarSaAsE:W7Z+pAp2nKLRKIKqoLSarSaAsE

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4e7055bebe65f2b8123beea7a4cdf74ac7fbe8b71ef4a3d4f69b9522810ff8eb
- Size
  
  50KB
- MD5
  
  5cff3143b8267682e383831055c8f624
- SHA1
  
  9d6706413dc952dafbc61fdaf11ff2d274702c24
- SHA256
  
  4e7055bebe65f2b8123beea7a4cdf74ac7fbe8b71ef4a3d4f69b9522810ff8eb
- SHA512
  
  1a74baf6ee32f1fe479462f894cfba2c1560aa4d8991efac6b574f78e7fee70b6627932843062ba0a498aa313162d221a53d739fd70accac9915f8fe21609ce0
- SSDEEP
  
  768:W7Blp+pARFbhBgnKLMWK9WKD2N2LSarSaAsE:W7Z+pAp2nKLRKIKqoLSarSaAsE
Score

9^/10

discovery ransomware
- Renames multiple (3656) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware