8e4b379e28a03c85d06c34cd2f0c018f9258f113a31108d6ed76b877966a8ade | Triage

Sharing

General

Target

8e4b379e28a03c85d06c34cd2f0c018f9258f113a31108d6ed76b877966a8ade
Size

195KB
Sample

240808-avtveswhrj
MD5

ddc7c7b6cf88fdf9727e29bef841e694
SHA1

2936b6d8643df8eee5b7dfd7798114f2b144d4f0
SHA256

8e4b379e28a03c85d06c34cd2f0c018f9258f113a31108d6ed76b877966a8ade
SHA512

f63f92e487f25e6483a0e76f6842a5a2286ff05f15cbd2bad573524ae7bd99a3e212ef15b0854fd0e8a862719fdedab0d4f0bd3bf206c518d11885451316f0d7
SSDEEP

3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkf:RqKB+tOkWKR0iJ0lTzkf

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8e4b379e28a03c85d06c34cd2f0c018f9258f113a31108d6ed76b877966a8ade
- Size
  
  195KB
- MD5
  
  ddc7c7b6cf88fdf9727e29bef841e694
- SHA1
  
  2936b6d8643df8eee5b7dfd7798114f2b144d4f0
- SHA256
  
  8e4b379e28a03c85d06c34cd2f0c018f9258f113a31108d6ed76b877966a8ade
- SHA512
  
  f63f92e487f25e6483a0e76f6842a5a2286ff05f15cbd2bad573524ae7bd99a3e212ef15b0854fd0e8a862719fdedab0d4f0bd3bf206c518d11885451316f0d7
- SSDEEP
  
  3072:6e7WpMNca3rytOkWpXfnYRl2l/9HSFHzJ0lBJTzkf:RqKB+tOkWKR0iJ0lTzkf
Score

9^/10

discovery ransomware
- Renames multiple (3249) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware