ead0b1be8a879a4a31445353d043717f4a59f4e5d8f6395ab6a840efa1e54a22 | Triage

Sharing

General

Target

ead0b1be8a879a4a31445353d043717f4a59f4e5d8f6395ab6a840efa1e54a22
Size

43KB
Sample

240809-ebptkswejn
MD5

caecf28240857a47c1d248a3432f97cd
SHA1

7152740e63afd217673259f1581ee8f53ebf47a0
SHA256

ead0b1be8a879a4a31445353d043717f4a59f4e5d8f6395ab6a840efa1e54a22
SHA512

ccd14c7b82d1083af4120cc83dcc8cc6957c74ccb82aac0353346a6dc5e889ecead324a38d01f1f343e92ee3a6d089dfe29a941cef0f683245ac14755a4defb5
SSDEEP

384:GBt7Br5xjL9AgA71FbhvuNBN10wpAp/lvolGClvolGwTCus7sj0h3MM0h3MR:W7BlpppARFbhbt7Y7wTCg0hcM0hcR

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ead0b1be8a879a4a31445353d043717f4a59f4e5d8f6395ab6a840efa1e54a22
- Size
  
  43KB
- MD5
  
  caecf28240857a47c1d248a3432f97cd
- SHA1
  
  7152740e63afd217673259f1581ee8f53ebf47a0
- SHA256
  
  ead0b1be8a879a4a31445353d043717f4a59f4e5d8f6395ab6a840efa1e54a22
- SHA512
  
  ccd14c7b82d1083af4120cc83dcc8cc6957c74ccb82aac0353346a6dc5e889ecead324a38d01f1f343e92ee3a6d089dfe29a941cef0f683245ac14755a4defb5
- SSDEEP
  
  384:GBt7Br5xjL9AgA71FbhvuNBN10wpAp/lvolGClvolGwTCus7sj0h3MM0h3MR:W7BlpppARFbhbt7Y7wTCg0hcM0hcR
Score

9^/10

discovery ransomware
- Renames multiple (4112) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware