ea864526b84024808df0a4e3a2278ebb9ddb3db3a7529622137ed50904c019ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cfefc9e85c8d52ed1c89d386cad38f0N.exe
Size

56KB
Sample

240806-lgna9szbpe
MD5

8cfefc9e85c8d52ed1c89d386cad38f0
SHA1

98ec9e17e59878f734c5940208ee802ea1d07827
SHA256

ea864526b84024808df0a4e3a2278ebb9ddb3db3a7529622137ed50904c019ef
SHA512

0c09a5bac533353c3bc1491cfd222fe48591624d3c41174ee378c77e0a07eff3277e11845644554e65299d6e1f3c1a4e9711cb8837f3e9c502df10e295cbcaad
SSDEEP

1536:W7ZhA7pApt9uw1vo6YEBWqQA/QZl5LenTpnDr5LenTpnDh5T:6e7WpHusA6YEsq5An5T

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8cfefc9e85c8d52ed1c89d386cad38f0N.exe
- Size
  
  56KB
- MD5
  
  8cfefc9e85c8d52ed1c89d386cad38f0
- SHA1
  
  98ec9e17e59878f734c5940208ee802ea1d07827
- SHA256
  
  ea864526b84024808df0a4e3a2278ebb9ddb3db3a7529622137ed50904c019ef
- SHA512
  
  0c09a5bac533353c3bc1491cfd222fe48591624d3c41174ee378c77e0a07eff3277e11845644554e65299d6e1f3c1a4e9711cb8837f3e9c502df10e295cbcaad
- SSDEEP
  
  1536:W7ZhA7pApt9uw1vo6YEBWqQA/QZl5LenTpnDr5LenTpnDh5T:6e7WpHusA6YEsq5An5T
Score

9^/10

discovery ransomware
- Renames multiple (3275) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware