e1f945acfd77e1215ef73f2cdda0bc3b0eab44176606db727308ebb944642e60 | Triage

Sharing

General

Target

e1f945acfd77e1215ef73f2cdda0bc3b0eab44176606db727308ebb944642e60N
Size

61KB
Sample

240919-era1cs1amn
MD5

6a3884c34d43271b0e7f06ce15961970
SHA1

513480bb4e813e4ec6603731b0b6a9951cd99c04
SHA256

e1f945acfd77e1215ef73f2cdda0bc3b0eab44176606db727308ebb944642e60
SHA512

d1453f11dbaafc8584d67dc8c169bfd2af5428612f64888c064846d30304310891b320154b0ca631f8828cc8e58cdd83da8ce6b1ac0d2f736931fce86bbb0396
SSDEEP

768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiBhRK7:W7ZhA7dABJJ7TTQoQNK7

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e1f945acfd77e1215ef73f2cdda0bc3b0eab44176606db727308ebb944642e60N
- Size
  
  61KB
- MD5
  
  6a3884c34d43271b0e7f06ce15961970
- SHA1
  
  513480bb4e813e4ec6603731b0b6a9951cd99c04
- SHA256
  
  e1f945acfd77e1215ef73f2cdda0bc3b0eab44176606db727308ebb944642e60
- SHA512
  
  d1453f11dbaafc8584d67dc8c169bfd2af5428612f64888c064846d30304310891b320154b0ca631f8828cc8e58cdd83da8ce6b1ac0d2f736931fce86bbb0396
- SSDEEP
  
  768:W7BlphA7dASbSjJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiBhRK7:W7ZhA7dABJJ7TTQoQNK7
Score

9^/10

discovery ransomware
- Renames multiple (3315) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware