9ef8bfda166e62567d3c7db8a49edf4d4666afa067ff17d8a39c0cdce5997250 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ef8bfda166e62567d3c7db8a49edf4d4666afa067ff17d8a39c0cdce5997250N
Size

49KB
Sample

241009-3wm3gsxcll
MD5

c71025fc405b33931afe9646e7f66050
SHA1

5e1e1ddfa91d658007d77e72eca45d770889e336
SHA256

9ef8bfda166e62567d3c7db8a49edf4d4666afa067ff17d8a39c0cdce5997250
SHA512

0d7173cc03008e45d33e0238d74432d63a788bee58292668af47b78c49a8f7f619b3c645f1371cd30eb249a6fc41ed436d42102cb4ff60a21a803a897257c737
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhi2yVB8yVBe:W7ZppApBULcfpHLcfpyDZPQq3yT8yTe

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  9ef8bfda166e62567d3c7db8a49edf4d4666afa067ff17d8a39c0cdce5997250N
- Size
  
  49KB
- MD5
  
  c71025fc405b33931afe9646e7f66050
- SHA1
  
  5e1e1ddfa91d658007d77e72eca45d770889e336
- SHA256
  
  9ef8bfda166e62567d3c7db8a49edf4d4666afa067ff17d8a39c0cdce5997250
- SHA512
  
  0d7173cc03008e45d33e0238d74432d63a788bee58292668af47b78c49a8f7f619b3c645f1371cd30eb249a6fc41ed436d42102cb4ff60a21a803a897257c737
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFZPsFhiXFhi2yVB8yVBe:W7ZppApBULcfpHLcfpyDZPQq3yT8yTe
Score

9^/10

discovery ransomware
- Renames multiple (3717) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware