18d44bee18f009ae691d3924b305b163141b2528525e388a5bb614f6263396b2 | Triage

Sharing

General

Target

18d44bee18f009ae691d3924b305b163141b2528525e388a5bb614f6263396b2N
Size

39KB
Sample

241009-cp4tjstalq
MD5

1650d5467d7996adc5971dc6bba6e4c0
SHA1

68bbebb69eb7576b0d05532ff47c7aa65730b174
SHA256

18d44bee18f009ae691d3924b305b163141b2528525e388a5bb614f6263396b2
SHA512

ffffc73f1f7d367992a56f91c19ccee742bd6af91e28c358df8c10de018f57dad302cac2c702c425ac83b9f631b401846881bfee5efeb1f9b7594f6dc3dd12dc
SSDEEP

768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSO:W7ZppApBMyKoIWbsHfySkT5GeCyi348F

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  18d44bee18f009ae691d3924b305b163141b2528525e388a5bb614f6263396b2N
- Size
  
  39KB
- MD5
  
  1650d5467d7996adc5971dc6bba6e4c0
- SHA1
  
  68bbebb69eb7576b0d05532ff47c7aa65730b174
- SHA256
  
  18d44bee18f009ae691d3924b305b163141b2528525e388a5bb614f6263396b2
- SHA512
  
  ffffc73f1f7d367992a56f91c19ccee742bd6af91e28c358df8c10de018f57dad302cac2c702c425ac83b9f631b401846881bfee5efeb1f9b7594f6dc3dd12dc
- SSDEEP
  
  768:W7BlpppARFbhjbhQYjY+WyKoIWbsHfySkT5GeQbyi348oWc1RPOzkjId6q8UdrSO:W7ZppApBMyKoIWbsHfySkT5GeCyi348F
Score

9^/10

discovery ransomware
- Renames multiple (294) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware