ae04d64c7419765b05a179e95efc1fc40f7f74d8144c65fddbe85a7867ca90de | Triage

Sharing

General

Target

ae04d64c7419765b05a179e95efc1fc40f7f74d8144c65fddbe85a7867ca90de
Size

40KB
Sample

240817-ea7b8svhna
MD5

3c1f13ddbacc2c7e220443b391150085
SHA1

7d93da20161e224651c80f73a6714fed05fdd2c8
SHA256

ae04d64c7419765b05a179e95efc1fc40f7f74d8144c65fddbe85a7867ca90de
SHA512

d854edf19ffa8ca1f1d60ad75e8f8d33578bea4257790e859d64bafdaf6958a041da9189b1c430c769ddeb83b3964a22ba6b35d2d2d987306ed937ffa81ccf16
SSDEEP

384:GBt7Br5xjL9A7AgA71Fbhvn+nDm0CAmmLg5Ms7spsZ8HYGkqvtJ+JzNANQ:W7BlphA7pARFbhOm0CAbLg+sJ

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ae04d64c7419765b05a179e95efc1fc40f7f74d8144c65fddbe85a7867ca90de
- Size
  
  40KB
- MD5
  
  3c1f13ddbacc2c7e220443b391150085
- SHA1
  
  7d93da20161e224651c80f73a6714fed05fdd2c8
- SHA256
  
  ae04d64c7419765b05a179e95efc1fc40f7f74d8144c65fddbe85a7867ca90de
- SHA512
  
  d854edf19ffa8ca1f1d60ad75e8f8d33578bea4257790e859d64bafdaf6958a041da9189b1c430c769ddeb83b3964a22ba6b35d2d2d987306ed937ffa81ccf16
- SSDEEP
  
  384:GBt7Br5xjL9A7AgA71Fbhvn+nDm0CAmmLg5Ms7spsZ8HYGkqvtJ+JzNANQ:W7BlphA7pARFbhOm0CAbLg+sJ
Score

9^/10

discovery ransomware
- Renames multiple (3800) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware