e62845dc1cc79d2efdf3684651f5a211a502aac909ab5ea0e0552c3944d1886c | Triage

Sharing

General

Target

e62845dc1cc79d2efdf3684651f5a211a502aac909ab5ea0e0552c3944d1886c
Size

231KB
Sample

240814-bkvveatdka
MD5

41cbf5bdb3b613317d2e7f78175c5d51
SHA1

18471178d4daa0f96d4b20563acc54223f46ad73
SHA256

e62845dc1cc79d2efdf3684651f5a211a502aac909ab5ea0e0552c3944d1886c
SHA512

3a464ca6e2f061b8eee082b9938823f93045218c24dbc3251b1fdc6a4013cc132544a6f2f31e355ff2f3973f4c4bbcc0cfb71e35133a964e9de69a375a3f1079
SSDEEP

768:W7BlphA7pARFbhKKVeIuKVeIBt+OKObYhnKhnZS+2w4Vqx0VqxzFtF2TZE:W7ZhA7pApBt+OKOsZKZZSjw4Vc0Vcb

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e62845dc1cc79d2efdf3684651f5a211a502aac909ab5ea0e0552c3944d1886c
- Size
  
  231KB
- MD5
  
  41cbf5bdb3b613317d2e7f78175c5d51
- SHA1
  
  18471178d4daa0f96d4b20563acc54223f46ad73
- SHA256
  
  e62845dc1cc79d2efdf3684651f5a211a502aac909ab5ea0e0552c3944d1886c
- SHA512
  
  3a464ca6e2f061b8eee082b9938823f93045218c24dbc3251b1fdc6a4013cc132544a6f2f31e355ff2f3973f4c4bbcc0cfb71e35133a964e9de69a375a3f1079
- SSDEEP
  
  768:W7BlphA7pARFbhKKVeIuKVeIBt+OKObYhnKhnZS+2w4Vqx0VqxzFtF2TZE:W7ZhA7pApBt+OKOsZKZZSjw4Vc0Vcb
Score

9^/10

discovery ransomware
- Renames multiple (2644) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware