af9e134cb333d7f9ec10eb6840d3e9701c9a462d6e81b2897732c5881064fd5a | Triage

Sharing

General

Target

af9e134cb333d7f9ec10eb6840d3e9701c9a462d6e81b2897732c5881064fd5aN
Size

49KB
Sample

240918-k7p24ssgqc
MD5

ab572ffe99c1e8d7613e4c0b570d8750
SHA1

1deb1ba29ba5a2fce01d40e2060d638cde8eb747
SHA256

af9e134cb333d7f9ec10eb6840d3e9701c9a462d6e81b2897732c5881064fd5a
SHA512

4a0c6e993760ce62c9c7b5486bec1c5ba884d9123f47d2a43412334fdabaa1aba0194debf84f0453feeef6c109489bb649533dcd678d970ad136467f4c699024
SSDEEP

768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLUty6J2CzxJ2Czf:W7ZppApBULcfpHLcfpyD3tHRz

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  af9e134cb333d7f9ec10eb6840d3e9701c9a462d6e81b2897732c5881064fd5aN
- Size
  
  49KB
- MD5
  
  ab572ffe99c1e8d7613e4c0b570d8750
- SHA1
  
  1deb1ba29ba5a2fce01d40e2060d638cde8eb747
- SHA256
  
  af9e134cb333d7f9ec10eb6840d3e9701c9a462d6e81b2897732c5881064fd5a
- SHA512
  
  4a0c6e993760ce62c9c7b5486bec1c5ba884d9123f47d2a43412334fdabaa1aba0194debf84f0453feeef6c109489bb649533dcd678d970ad136467f4c699024
- SSDEEP
  
  768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFjqAJLOqAJLUty6J2CzxJ2Czf:W7ZppApBULcfpHLcfpyD3tHRz
Score

9^/10

discovery ransomware
- Renames multiple (3442) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware