bfaed61ce37f28973c57d044e81efd85cd9eca8a39e281e01cf18caaf7b6af86 | Triage

Sharing

General

Target

bfaed61ce37f28973c57d044e81efd85cd9eca8a39e281e01cf18caaf7b6af86N
Size

57KB
Sample

240919-ekzp5szelf
MD5

b594d50242080d1a4f5bc7034c44c990
SHA1

9427694237ba335d42bee79da670df71233858ae
SHA256

bfaed61ce37f28973c57d044e81efd85cd9eca8a39e281e01cf18caaf7b6af86
SHA512

5624081bcc54dd80b0b12228ec03dbea3965baf4d161da9d1c5fa7ff9ce96a93ed1d7b98aa17ccb98ca86b5091c82b1750c38126c51d6e1d1fa65c60b6622460
SSDEEP

1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFs7:6rWpcsHEhLfyBtPf50FWkFpPDze/qFst

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  bfaed61ce37f28973c57d044e81efd85cd9eca8a39e281e01cf18caaf7b6af86N
- Size
  
  57KB
- MD5
  
  b594d50242080d1a4f5bc7034c44c990
- SHA1
  
  9427694237ba335d42bee79da670df71233858ae
- SHA256
  
  bfaed61ce37f28973c57d044e81efd85cd9eca8a39e281e01cf18caaf7b6af86
- SHA512
  
  5624081bcc54dd80b0b12228ec03dbea3965baf4d161da9d1c5fa7ff9ce96a93ed1d7b98aa17ccb98ca86b5091c82b1750c38126c51d6e1d1fa65c60b6622460
- SSDEEP
  
  1536:W7ZrpApojswv0EhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFs7:6rWpcsHEhLfyBtPf50FWkFpPDze/qFst
Score

9^/10

discovery ransomware
- Renames multiple (3413) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware