e8f9dce639dd694f68c726f9b8f70619184c50fe695efd0db3259b6727b0c249 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8f9dce639dd694f68c726f9b8f70619184c50fe695efd0db3259b6727b0c249
Size

89KB
Sample

240901-e5mlba1gjr
MD5

64260b5e03c480490407e87345c86f41
SHA1

57df911e2718f4c9581a2597c988ecb09e8ee72c
SHA256

e8f9dce639dd694f68c726f9b8f70619184c50fe695efd0db3259b6727b0c249
SHA512

dd1694eba616d622701d97acca2fb0ea924a3af28d28715753d4ce3576b6767d819a7a7b29b309f6d04068f896718c31fb345294c6cf75bedb2b8032c484407d
SSDEEP

1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhu:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsT

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e8f9dce639dd694f68c726f9b8f70619184c50fe695efd0db3259b6727b0c249
- Size
  
  89KB
- MD5
  
  64260b5e03c480490407e87345c86f41
- SHA1
  
  57df911e2718f4c9581a2597c988ecb09e8ee72c
- SHA256
  
  e8f9dce639dd694f68c726f9b8f70619184c50fe695efd0db3259b6727b0c249
- SHA512
  
  dd1694eba616d622701d97acca2fb0ea924a3af28d28715753d4ce3576b6767d819a7a7b29b309f6d04068f896718c31fb345294c6cf75bedb2b8032c484407d
- SSDEEP
  
  1536:W7ZppApUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsAcEhu:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsT
Score

9^/10

discovery ransomware
- Renames multiple (3535) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware