8a95ffab108b2729442bccd26f0069d36c5eccac09b50dd61bb2a678c6bea6cf | Triage

Sharing

General

Target

8a95ffab108b2729442bccd26f0069d36c5eccac09b50dd61bb2a678c6bea6cf
Size

46KB
Sample

241009-avmfcaxhmd
MD5

2a4a3a7f530d8413ec2bd03152a081de
SHA1

fb97cda30fe2bf40f40399ff6623bf13d0b76267
SHA256

8a95ffab108b2729442bccd26f0069d36c5eccac09b50dd61bb2a678c6bea6cf
SHA512

f21d05608ada0b7a3935496f041e636b01b069a9f8b726b16934630b555fe453907fa184f2ef6d465f439bdf103c78bab3621b0ce36602a9bb3abdad3f135cc4
SSDEEP

768:W7Blp+pARFbhBgnKLMWK9WKD2N2LSarSaD:W7Z+pAp2nKLRKIKqoLSarSaD

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  8a95ffab108b2729442bccd26f0069d36c5eccac09b50dd61bb2a678c6bea6cf
- Size
  
  46KB
- MD5
  
  2a4a3a7f530d8413ec2bd03152a081de
- SHA1
  
  fb97cda30fe2bf40f40399ff6623bf13d0b76267
- SHA256
  
  8a95ffab108b2729442bccd26f0069d36c5eccac09b50dd61bb2a678c6bea6cf
- SHA512
  
  f21d05608ada0b7a3935496f041e636b01b069a9f8b726b16934630b555fe453907fa184f2ef6d465f439bdf103c78bab3621b0ce36602a9bb3abdad3f135cc4
- SSDEEP
  
  768:W7Blp+pARFbhBgnKLMWK9WKD2N2LSarSaD:W7Z+pAp2nKLRKIKqoLSarSaD
Score

9^/10

discovery ransomware
- Renames multiple (3520) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware