af0e1aaafb709bc7c9d4aa127414d6a4531ea59101f46971c2cd847a9d2c370c | Triage

Sharing

General

Target

af0e1aaafb709bc7c9d4aa127414d6a4531ea59101f46971c2cd847a9d2c370cN
Size

37KB
Sample

240927-x37gtavfmn
MD5

745afe28914a70b225d729437a826d40
SHA1

a9de7ad7d2fc286bac7c251748f12525c02cf6bf
SHA256

af0e1aaafb709bc7c9d4aa127414d6a4531ea59101f46971c2cd847a9d2c370c
SHA512

e96a4cb136546cbb656d2baed57602e83b282df6d03f526b818114711d6a50ea221de54951ad6fb140c3d25e3280c6e4380ea4972a94aca6acfeaeadaeed273c
SSDEEP

192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxje6OMmy6OMmjPw:yBs7Br5xjL8AgA71Fbhv/Fzzwzv

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  af0e1aaafb709bc7c9d4aa127414d6a4531ea59101f46971c2cd847a9d2c370cN
- Size
  
  37KB
- MD5
  
  745afe28914a70b225d729437a826d40
- SHA1
  
  a9de7ad7d2fc286bac7c251748f12525c02cf6bf
- SHA256
  
  af0e1aaafb709bc7c9d4aa127414d6a4531ea59101f46971c2cd847a9d2c370c
- SHA512
  
  e96a4cb136546cbb656d2baed57602e83b282df6d03f526b818114711d6a50ea221de54951ad6fb140c3d25e3280c6e4380ea4972a94aca6acfeaeadaeed273c
- SSDEEP
  
  192:pACU3DIY0Br5xjL/EAgAQmP1oynLb22vB7m/FJHo7m/FJHA9jxje6OMmy6OMmjPw:yBs7Br5xjL8AgA71Fbhv/Fzzwzv
Score

9^/10

discovery ransomware
- Renames multiple (3387) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware