28e01a90a67e847df51deb59e1e56a240c930a618d5ca68b2fa1b4ee42e2ed13 | Triage

Sharing

General

Target

28e01a90a67e847df51deb59e1e56a240c930a618d5ca68b2fa1b4ee42e2ed13N
Size

93KB
Sample

241015-aptbpstfpd
MD5

9d45f9c55e2957f441cd386d1a0ee660
SHA1

168630eacebad4d64a856947f57f5a38c4ee79c8
SHA256

28e01a90a67e847df51deb59e1e56a240c930a618d5ca68b2fa1b4ee42e2ed13
SHA512

dfb844de56d78b284c63e49a33095f44bcaf742342b2e1cea63fdb217b5087608306ffe33c34eeded0fcaacbdacb02bff427a8a51ca0c9eff3591c547931debe
SSDEEP

1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKgg0///x9zKxcp3:69WpQE0zxg4nIcp3

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  28e01a90a67e847df51deb59e1e56a240c930a618d5ca68b2fa1b4ee42e2ed13N
- Size
  
  93KB
- MD5
  
  9d45f9c55e2957f441cd386d1a0ee660
- SHA1
  
  168630eacebad4d64a856947f57f5a38c4ee79c8
- SHA256
  
  28e01a90a67e847df51deb59e1e56a240c930a618d5ca68b2fa1b4ee42e2ed13
- SHA512
  
  dfb844de56d78b284c63e49a33095f44bcaf742342b2e1cea63fdb217b5087608306ffe33c34eeded0fcaacbdacb02bff427a8a51ca0c9eff3591c547931debe
- SSDEEP
  
  1536:W7Z9pApQESOHepOHe8G+6E65dyGdykNdNBKgg0///x9zKxcp3:69WpQE0zxg4nIcp3
Score

9^/10

discovery ransomware
- Renames multiple (3077) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware