ea951021d4798edb0ccdb2fbd207b34fb1aadd3885b51f8987a2013939d2492f | Triage

Sharing

General

Target

ea951021d4798edb0ccdb2fbd207b34fb1aadd3885b51f8987a2013939d2492fN
Size

49KB
Sample

240918-lea8xstbmf
MD5

7b0740c276685b6617c36a7e014b4ab0
SHA1

b0dc8930ecee697842b7c0749139e905ed4f57ff
SHA256

ea951021d4798edb0ccdb2fbd207b34fb1aadd3885b51f8987a2013939d2492f
SHA512

27422415ab44d7540535aade263b5425b6a210b804457246ccd75057b642108cc47c59296fe0a465f16b25936c74cd9d06e63a1f45dc363833d10603a660bee5
SSDEEP

768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c53J6XJ6M:W7ZhA7dABJJZENTBWv36hJ6XJ6M

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ea951021d4798edb0ccdb2fbd207b34fb1aadd3885b51f8987a2013939d2492fN
- Size
  
  49KB
- MD5
  
  7b0740c276685b6617c36a7e014b4ab0
- SHA1
  
  b0dc8930ecee697842b7c0749139e905ed4f57ff
- SHA256
  
  ea951021d4798edb0ccdb2fbd207b34fb1aadd3885b51f8987a2013939d2492f
- SHA512
  
  27422415ab44d7540535aade263b5425b6a210b804457246ccd75057b642108cc47c59296fe0a465f16b25936c74cd9d06e63a1f45dc363833d10603a660bee5
- SSDEEP
  
  768:W7BlphA7dASbSjJJcbQbf1Oti1JGBQOOiQJhATBWvyBh85c53J6XJ6M:W7ZhA7dABJJZENTBWv36hJ6XJ6M
Score

9^/10

discovery ransomware
- Renames multiple (3249) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware