af537e5e9ea7f9ef4a80dea0948134d0ae4054718afd74f9aa5ba043b32e2d0e | Triage

Sharing

General

Target

af537e5e9ea7f9ef4a80dea0948134d0ae4054718afd74f9aa5ba043b32e2d0eN
Size

49KB
Sample

241003-2v2ntavdja
MD5

6404897ed942df4016c7c343284f0320
SHA1

efd3c432e83dcd2243f808bf90baa21f4f689669
SHA256

af537e5e9ea7f9ef4a80dea0948134d0ae4054718afd74f9aa5ba043b32e2d0e
SHA512

b3435910fcee8f0202175caf0cea39323016da829fd57394f7fac857ffae50defecae67d708658b321f175448826ef7aad7ca4158cb990ca8acf9a7813456519
SSDEEP

768:/7BlpQpARFbhS101hk5c5iZIYyTQoJLYyTQoJY:/7ZQpAp26tQoJpQoJY

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  af537e5e9ea7f9ef4a80dea0948134d0ae4054718afd74f9aa5ba043b32e2d0eN
- Size
  
  49KB
- MD5
  
  6404897ed942df4016c7c343284f0320
- SHA1
  
  efd3c432e83dcd2243f808bf90baa21f4f689669
- SHA256
  
  af537e5e9ea7f9ef4a80dea0948134d0ae4054718afd74f9aa5ba043b32e2d0e
- SHA512
  
  b3435910fcee8f0202175caf0cea39323016da829fd57394f7fac857ffae50defecae67d708658b321f175448826ef7aad7ca4158cb990ca8acf9a7813456519
- SSDEEP
  
  768:/7BlpQpARFbhS101hk5c5iZIYyTQoJLYyTQoJY:/7ZQpAp26tQoJpQoJY
Score

9^/10

discovery ransomware
- Renames multiple (3425) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware