df47e46c346898a7eaa8af79deedb6d16ae22e62d8c89dd13dd145171ea393d4 | Triage

Sharing

General

Target

df47e46c346898a7eaa8af79deedb6d16ae22e62d8c89dd13dd145171ea393d4
Size

42KB
Sample

241009-emqj9athqn
MD5

64e2003f08d9a61c7c12e6fdcb661d86
SHA1

af9995300a310ccbbdb39c9e62b3c07201d21f41
SHA256

df47e46c346898a7eaa8af79deedb6d16ae22e62d8c89dd13dd145171ea393d4
SHA512

ad09d8047b342f868bb8923fde14cf8b28303cd6196ff1a4481475b965fec2b0eb4961dcebc4675ba987e61d30450b64e878910ab4589bcff88da4afcb01b40c
SSDEEP

384:GBt7Br5xjLfAgA71FbhvtPcNOF8F0qOF8F0PDXxhDXxYLCC8sPCC8sz:W7BlpDpARFbhmauaLXxpXxYv

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  df47e46c346898a7eaa8af79deedb6d16ae22e62d8c89dd13dd145171ea393d4
- Size
  
  42KB
- MD5
  
  64e2003f08d9a61c7c12e6fdcb661d86
- SHA1
  
  af9995300a310ccbbdb39c9e62b3c07201d21f41
- SHA256
  
  df47e46c346898a7eaa8af79deedb6d16ae22e62d8c89dd13dd145171ea393d4
- SHA512
  
  ad09d8047b342f868bb8923fde14cf8b28303cd6196ff1a4481475b965fec2b0eb4961dcebc4675ba987e61d30450b64e878910ab4589bcff88da4afcb01b40c
- SSDEEP
  
  384:GBt7Br5xjLfAgA71FbhvtPcNOF8F0qOF8F0PDXxhDXxYLCC8sPCC8sz:W7BlpDpARFbhmauaLXxpXxYv
Score

9^/10

discovery ransomware
- Renames multiple (3933) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware