e52a4d134fc04e5d9a13363e26258e1450b846f067012a786967a0011a36b13d | Triage

Sharing

General

Target

e52a4d134fc04e5d9a13363e26258e1450b846f067012a786967a0011a36b13dN
Size

89KB
Sample

240918-kx2cdstapr
MD5

28d57199e8753ba74a5e7056cb5eac90
SHA1

61129701d12a4c2b5b3bcdcb328242b5bae44836
SHA256

e52a4d134fc04e5d9a13363e26258e1450b846f067012a786967a0011a36b13d
SHA512

9125a5e82a4cc1a572c69af421e579c74692be66020d731fe7c1f66b3d4b166066e49d05976983792084f2355ff16decf8d2ccd8dd4f47ea6053e4a2ddb45c6a
SSDEEP

768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tivBT37CPKKdJJ1EXBwzEq:W7ZhA7dABJJ7TTQoQJTW7JJ7TTQoQY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e52a4d134fc04e5d9a13363e26258e1450b846f067012a786967a0011a36b13dN
- Size
  
  89KB
- MD5
  
  28d57199e8753ba74a5e7056cb5eac90
- SHA1
  
  61129701d12a4c2b5b3bcdcb328242b5bae44836
- SHA256
  
  e52a4d134fc04e5d9a13363e26258e1450b846f067012a786967a0011a36b13d
- SHA512
  
  9125a5e82a4cc1a572c69af421e579c74692be66020d731fe7c1f66b3d4b166066e49d05976983792084f2355ff16decf8d2ccd8dd4f47ea6053e4a2ddb45c6a
- SSDEEP
  
  768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tivBT37CPKKdJJ1EXBwzEq:W7ZhA7dABJJ7TTQoQJTW7JJ7TTQoQY
Score

9^/10

discovery ransomware
- Renames multiple (3180) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware