ed880631e82fba13a8cff968cd177708dcd3ddbe9e315a7d7440eb9c7ac8be8b | Triage

Sharing

General

Target

ed880631e82fba13a8cff968cd177708dcd3ddbe9e315a7d7440eb9c7ac8be8bN
Size

46KB
Sample

240919-e24ena1drp
MD5

42d8eff302dbc8358feb4d787a19bf10
SHA1

13a11a84b2dc6261ab0bf10c792b81cd0ee3426f
SHA256

ed880631e82fba13a8cff968cd177708dcd3ddbe9e315a7d7440eb9c7ac8be8b
SHA512

41495dac38a6c545cb98fb86835ab66e32fd6a06054189354f105ee0db487e336553b2d575a0ce764707a375270001787d769b5a154f738de69f58be06022f79
SSDEEP

384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66Cux:/7BlpQpARFbhq1KtGFGxNCSNC4

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  ed880631e82fba13a8cff968cd177708dcd3ddbe9e315a7d7440eb9c7ac8be8bN
- Size
  
  46KB
- MD5
  
  42d8eff302dbc8358feb4d787a19bf10
- SHA1
  
  13a11a84b2dc6261ab0bf10c792b81cd0ee3426f
- SHA256
  
  ed880631e82fba13a8cff968cd177708dcd3ddbe9e315a7d7440eb9c7ac8be8b
- SHA512
  
  41495dac38a6c545cb98fb86835ab66e32fd6a06054189354f105ee0db487e336553b2d575a0ce764707a375270001787d769b5a154f738de69f58be06022f79
- SSDEEP
  
  384:yBs7Br5xjL8AgA71FbhvBfepj3cfepj3KtLJilqGelqG4K66CPK66Cux:/7BlpQpARFbhq1KtGFGxNCSNC4
Score

9^/10

discovery ransomware
- Renames multiple (3249) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware