d2aae504e078346916dd89817e152fc2e34467a469b9c3d9616c5100143421e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d2aae504e078346916dd89817e152fc2e34467a469b9c3d9616c5100143421e2
Size

86KB
Sample

240902-ev11ys1epq
MD5

48cffc5e28530fff8cc9f1ac2542b187
SHA1

654ffcbed9ee82a0b9e5ee81890609e6de484516
SHA256

d2aae504e078346916dd89817e152fc2e34467a469b9c3d9616c5100143421e2
SHA512

a9398079fcd133139acc44138c9926256ab85a6df3ac59b83a66e487403d444aa89fad487bcbb15f07847a0f89858df57c09b1fdd233a6d5ab05151ab761ab3f
SSDEEP

1536:/7ZQpApze+eJfFpsJOfFpsJeFrxFrUgtVw2wwZemZec:9QWpze+eJfFpsJOfFpsJ0rDrXtVw2wwV

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  d2aae504e078346916dd89817e152fc2e34467a469b9c3d9616c5100143421e2
- Size
  
  86KB
- MD5
  
  48cffc5e28530fff8cc9f1ac2542b187
- SHA1
  
  654ffcbed9ee82a0b9e5ee81890609e6de484516
- SHA256
  
  d2aae504e078346916dd89817e152fc2e34467a469b9c3d9616c5100143421e2
- SHA512
  
  a9398079fcd133139acc44138c9926256ab85a6df3ac59b83a66e487403d444aa89fad487bcbb15f07847a0f89858df57c09b1fdd233a6d5ab05151ab761ab3f
- SSDEEP
  
  1536:/7ZQpApze+eJfFpsJOfFpsJeFrxFrUgtVw2wwZemZec:9QWpze+eJfFpsJOfFpsJ0rDrXtVw2wwV
Score

9^/10

discovery ransomware
- Renames multiple (3494) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware