e1a2dae048b8e5390fc0244209d5b734b13269d25df6b75311b0f88ad443c204 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1a2dae048b8e5390fc0244209d5b734b13269d25df6b75311b0f88ad443c204
Size

52KB
Sample

240809-dwk6fswclp
MD5

9817e9562c3988ce0c9bc445f14b3b0e
SHA1

290bf40d1d6aed2f206bff83aa406614353db125
SHA256

e1a2dae048b8e5390fc0244209d5b734b13269d25df6b75311b0f88ad443c204
SHA512

5be8385ac614a9cb9ac45bce6762e6a4814fc49da36b7bf906f1f858deaedb99836dc49167bea5c4f53f3d19ad42bf338a770e57b56d8c172dea0ddabdc2f821
SSDEEP

384:GBt7Br5xjL9A7AgA71FbhvnIH2YsTKnKqtaW3WaEdW3WHY3SjSFvOU+:W7BlphA7pARFbhvOsTKnKqtkYi+FvOU+

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e1a2dae048b8e5390fc0244209d5b734b13269d25df6b75311b0f88ad443c204
- Size
  
  52KB
- MD5
  
  9817e9562c3988ce0c9bc445f14b3b0e
- SHA1
  
  290bf40d1d6aed2f206bff83aa406614353db125
- SHA256
  
  e1a2dae048b8e5390fc0244209d5b734b13269d25df6b75311b0f88ad443c204
- SHA512
  
  5be8385ac614a9cb9ac45bce6762e6a4814fc49da36b7bf906f1f858deaedb99836dc49167bea5c4f53f3d19ad42bf338a770e57b56d8c172dea0ddabdc2f821
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71FbhvnIH2YsTKnKqtaW3WaEdW3WHY3SjSFvOU+:W7BlphA7pARFbhvOsTKnKqtkYi+FvOU+
Score

9^/10

discovery ransomware
- Renames multiple (3776) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware