e09f32568ccb41a42989e86d0de8819837ac5cdb5c2657b2c65e65a0f356c401 | Triage

Sharing

General

Target

e09f32568ccb41a42989e86d0de8819837ac5cdb5c2657b2c65e65a0f356c401N
Size

201KB
Sample

240919-flhnpasclr
MD5

dfd294a8d837530c9cf4e687b3a30b60
SHA1

b8f3a868d87098fa2e93f695b29df830e3d8565f
SHA256

e09f32568ccb41a42989e86d0de8819837ac5cdb5c2657b2c65e65a0f356c401
SHA512

d6ceb0a4231096371a60a5a063bb1e7a0691fa86b84d0925ef37d7c07df5b734c7c2881a6899efaa4231a44ce0f86e6a2c145f78c1aaa1bf854bdc4f9a24db90
SSDEEP

1536:W7ZQpApfytyxsks0DjdesgHOsXOHepOHe5:6QWp1sksHsuOsH

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e09f32568ccb41a42989e86d0de8819837ac5cdb5c2657b2c65e65a0f356c401N
- Size
  
  201KB
- MD5
  
  dfd294a8d837530c9cf4e687b3a30b60
- SHA1
  
  b8f3a868d87098fa2e93f695b29df830e3d8565f
- SHA256
  
  e09f32568ccb41a42989e86d0de8819837ac5cdb5c2657b2c65e65a0f356c401
- SHA512
  
  d6ceb0a4231096371a60a5a063bb1e7a0691fa86b84d0925ef37d7c07df5b734c7c2881a6899efaa4231a44ce0f86e6a2c145f78c1aaa1bf854bdc4f9a24db90
- SSDEEP
  
  1536:W7ZQpApfytyxsks0DjdesgHOsXOHepOHe5:6QWp1sksHsuOsH
Score

9^/10

discovery ransomware
- Renames multiple (2655) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware