e41932bff362d1a3ab25673662d7aad3376fc798f7553a852a9f97308700ac58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e41932bff362d1a3ab25673662d7aad3376fc798f7553a852a9f97308700ac58
Size

69KB
Sample

240814-bg8xvstcld
MD5

4bf16e775c171cfc969538a20b23ac1c
SHA1

02e68cac96ee295340494edb9c05a3b4834f4f68
SHA256

e41932bff362d1a3ab25673662d7aad3376fc798f7553a852a9f97308700ac58
SHA512

4611599eaefeb58b3099d15c7e49cf4054e8f74939cf2e3bfa979af53af872c98ab15572aa5168ef1dbe28ef20e7665141cda6310a41570cbe0512e6ac7b8679
SSDEEP

1536:W7ZppApkxUYU30NQn0NQaYepnpf64rDQb:6pWpkc0NQn0NQiBXQb

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e41932bff362d1a3ab25673662d7aad3376fc798f7553a852a9f97308700ac58
- Size
  
  69KB
- MD5
  
  4bf16e775c171cfc969538a20b23ac1c
- SHA1
  
  02e68cac96ee295340494edb9c05a3b4834f4f68
- SHA256
  
  e41932bff362d1a3ab25673662d7aad3376fc798f7553a852a9f97308700ac58
- SHA512
  
  4611599eaefeb58b3099d15c7e49cf4054e8f74939cf2e3bfa979af53af872c98ab15572aa5168ef1dbe28ef20e7665141cda6310a41570cbe0512e6ac7b8679
- SSDEEP
  
  1536:W7ZppApkxUYU30NQn0NQaYepnpf64rDQb:6pWpkc0NQn0NQiBXQb
Score

9^/10

discovery ransomware
- Renames multiple (3680) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware