a54e737ee20bc24220c2b39c0ef496125dcaf04d8ef8e607ebfb66bfd131f802 | Triage

Sharing

General

Target

a54e737ee20bc24220c2b39c0ef496125dcaf04d8ef8e607ebfb66bfd131f802
Size

34KB
Sample

240817-dv8kcsxfpj
MD5

a5203bc53ee9410c141a20acb9438d0d
SHA1

d2d7c437adc62e4f5fe78210e53855cda72bc4b3
SHA256

a54e737ee20bc24220c2b39c0ef496125dcaf04d8ef8e607ebfb66bfd131f802
SHA512

62ab3d6105647ee4c9985004b72036d0e46d0e8733b15f08012e4d4236b703e57f32685d3fd325671e15b4efc9d5b01213e6c00213158c7389be6a4646455181
SSDEEP

384:GBt7Br5xjL9A7AgA71FbhvnwR/s4Nkq81LOyq81LOUqKqh:W7BlphA7pARFbhM0Kkq81LOyq81LOP

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  a54e737ee20bc24220c2b39c0ef496125dcaf04d8ef8e607ebfb66bfd131f802
- Size
  
  34KB
- MD5
  
  a5203bc53ee9410c141a20acb9438d0d
- SHA1
  
  d2d7c437adc62e4f5fe78210e53855cda72bc4b3
- SHA256
  
  a54e737ee20bc24220c2b39c0ef496125dcaf04d8ef8e607ebfb66bfd131f802
- SHA512
  
  62ab3d6105647ee4c9985004b72036d0e46d0e8733b15f08012e4d4236b703e57f32685d3fd325671e15b4efc9d5b01213e6c00213158c7389be6a4646455181
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71FbhvnwR/s4Nkq81LOyq81LOUqKqh:W7BlphA7pARFbhM0Kkq81LOyq81LOP
Score

9^/10

discovery ransomware
- Renames multiple (3891) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware