6d5c8e53701f113a8c3d8283496b80de7888f1b6ea9e858b49395c231b46cb05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d5c8e53701f113a8c3d8283496b80de7888f1b6ea9e858b49395c231b46cb05N
Size

74KB
Sample

241013-xjb7kascrb
MD5

970cf539693ebd9f00c8556515048910
SHA1

48079c7d7b3ed3bc5bc217505483fc8cdec0d9fc
SHA256

6d5c8e53701f113a8c3d8283496b80de7888f1b6ea9e858b49395c231b46cb05
SHA512

d77eb7b522ce0df8a162ae0512bfbd1746895eace25f9d863eb3e614924127c4163d001adee137698916c96a7ff84bcc847d7dc7383ec82168437066c6227bda
SSDEEP

1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8+CtlYSDs:6e76mQSostXDs

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  6d5c8e53701f113a8c3d8283496b80de7888f1b6ea9e858b49395c231b46cb05N
- Size
  
  74KB
- MD5
  
  970cf539693ebd9f00c8556515048910
- SHA1
  
  48079c7d7b3ed3bc5bc217505483fc8cdec0d9fc
- SHA256
  
  6d5c8e53701f113a8c3d8283496b80de7888f1b6ea9e858b49395c231b46cb05
- SHA512
  
  d77eb7b522ce0df8a162ae0512bfbd1746895eace25f9d863eb3e614924127c4163d001adee137698916c96a7ff84bcc847d7dc7383ec82168437066c6227bda
- SSDEEP
  
  1536:W7ZhA7dAZ1++PJHJXA/OsIZfzc3/Q8+CtlYSDs:6e76mQSostXDs
Score

9^/10

discovery ransomware
- Renames multiple (2912) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware