8064a258b9bd258a8f32842108f4db9b74300aa1fa3685dc76ba8bbe11de0332 | Triage

Sharing

General

Target

8064a258b9bd258a8f32842108f4db9b74300aa1fa3685dc76ba8bbe11de0332
Size

32KB
Sample

240809-3erpcayeka
MD5

a6685246b9b71ee3c1c36335fbdce17a
SHA1

b21a21969dda2f69538ed8c6eb14284f0de29cf3
SHA256

8064a258b9bd258a8f32842108f4db9b74300aa1fa3685dc76ba8bbe11de0332
SHA512

354e3e07f865fbc0fbc6dbf36cf6afb6f8ef1ac63d369a12d76e3a4416fd3b882a52cc4a7d9472eac06f60131a2e0859c2f9580b77fbec1d66bde478e645c31c
SSDEEP

384:GBt7Br5xjLvassAgA71FbhvYD/DCgAgT9L:W7Blp2sspARFbhO9L

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8064a258b9bd258a8f32842108f4db9b74300aa1fa3685dc76ba8bbe11de0332
- Size
  
  32KB
- MD5
  
  a6685246b9b71ee3c1c36335fbdce17a
- SHA1
  
  b21a21969dda2f69538ed8c6eb14284f0de29cf3
- SHA256
  
  8064a258b9bd258a8f32842108f4db9b74300aa1fa3685dc76ba8bbe11de0332
- SHA512
  
  354e3e07f865fbc0fbc6dbf36cf6afb6f8ef1ac63d369a12d76e3a4416fd3b882a52cc4a7d9472eac06f60131a2e0859c2f9580b77fbec1d66bde478e645c31c
- SSDEEP
  
  384:GBt7Br5xjLvassAgA71FbhvYD/DCgAgT9L:W7Blp2sspARFbhO9L
Score

9^/10

discovery ransomware
- Renames multiple (3946) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware