ea8f640f74b641340676837fc1bdc5868424387823ae5f8e8c72e863184b2e68 | Triage

Sharing

General

Target

ea8f640f74b641340676837fc1bdc5868424387823ae5f8e8c72e863184b2e68
Size

107KB
Sample

240919-dkmvxaxfla
MD5

b689c42a1d03100750f62b44b694a0e2
SHA1

c9fc144dc41edf51f6932048f251ef62e2864453
SHA256

ea8f640f74b641340676837fc1bdc5868424387823ae5f8e8c72e863184b2e68
SHA512

b79f4c451113a8997faac8dbe9dd76d724c1b1be23654bbfe00b10004ca71cb7cd784fd6f5accded1005386a581e67a9fa164767da1fd48673d35d2cf6d635b1
SSDEEP

3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZHfFpsJOfFpsJ6XzlulK:RqKvb0CYJ973e+eKZlAY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ea8f640f74b641340676837fc1bdc5868424387823ae5f8e8c72e863184b2e68
- Size
  
  107KB
- MD5
  
  b689c42a1d03100750f62b44b694a0e2
- SHA1
  
  c9fc144dc41edf51f6932048f251ef62e2864453
- SHA256
  
  ea8f640f74b641340676837fc1bdc5868424387823ae5f8e8c72e863184b2e68
- SHA512
  
  b79f4c451113a8997faac8dbe9dd76d724c1b1be23654bbfe00b10004ca71cb7cd784fd6f5accded1005386a581e67a9fa164767da1fd48673d35d2cf6d635b1
- SSDEEP
  
  3072:6e7WpMaxeb0CYJ97lEYNR73e+eKZHfFpsJOfFpsJ6XzlulK:RqKvb0CYJ973e+eKZlAY
Score

9^/10

discovery ransomware
- Renames multiple (555) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware