e28e24407e19c4f30dd9e966156b5a22b575e07a4d4a1be093516abd5f161c5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e28e24407e19c4f30dd9e966156b5a22b575e07a4d4a1be093516abd5f161c5a
Size

200KB
Sample

240807-elxl6s1akq
MD5

3e20614b880e6a11e005a335f4159dbf
SHA1

03467b7c1d5982cb8a1f2880ad435569a63e5606
SHA256

e28e24407e19c4f30dd9e966156b5a22b575e07a4d4a1be093516abd5f161c5a
SHA512

5241522db8c244a0f8687fdbf464b57a335987542af7c5f43fb2ad20b1f55d6a3e524445339537492507b76603ebfd4b0017beaee3e9f4f055d2ad8eeca5351c
SSDEEP

1536:W7ZQpApfytyxsks0DjdesgHOsXOHepOHeQ:6QWp1sksHsuOsy

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e28e24407e19c4f30dd9e966156b5a22b575e07a4d4a1be093516abd5f161c5a
- Size
  
  200KB
- MD5
  
  3e20614b880e6a11e005a335f4159dbf
- SHA1
  
  03467b7c1d5982cb8a1f2880ad435569a63e5606
- SHA256
  
  e28e24407e19c4f30dd9e966156b5a22b575e07a4d4a1be093516abd5f161c5a
- SHA512
  
  5241522db8c244a0f8687fdbf464b57a335987542af7c5f43fb2ad20b1f55d6a3e524445339537492507b76603ebfd4b0017beaee3e9f4f055d2ad8eeca5351c
- SSDEEP
  
  1536:W7ZQpApfytyxsks0DjdesgHOsXOHepOHeQ:6QWp1sksHsuOsy
Score

9^/10

discovery ransomware
- Renames multiple (3206) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware