e64d51df5eb63b0e9c2b20d22b3fe9ca7b2f424ccdcdca207dcbb8397f74f205 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e64d51df5eb63b0e9c2b20d22b3fe9ca7b2f424ccdcdca207dcbb8397f74f205N
Size

68KB
Sample

241011-2hjbpssdkm
MD5

cc829de8d7657274163d1b9a924e5c90
SHA1

8c58daeeaa1a99a48174262e2e45b1641b6e7977
SHA256

e64d51df5eb63b0e9c2b20d22b3fe9ca7b2f424ccdcdca207dcbb8397f74f205
SHA512

47b0544254154052dc7d3ce60da67bf2c2b8518a4c40094ef103adc3ec3c43bd929bd51293437b1217a191beabd8d23a6609e4525167d8e492860b7b6e2bc29a
SSDEEP

1536:W7ZhA7dAynMdyGdy4AnA4Q5+e8ccT+e8ccc:6e76ynpAhb8ccTb8ccc

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  e64d51df5eb63b0e9c2b20d22b3fe9ca7b2f424ccdcdca207dcbb8397f74f205N
- Size
  
  68KB
- MD5
  
  cc829de8d7657274163d1b9a924e5c90
- SHA1
  
  8c58daeeaa1a99a48174262e2e45b1641b6e7977
- SHA256
  
  e64d51df5eb63b0e9c2b20d22b3fe9ca7b2f424ccdcdca207dcbb8397f74f205
- SHA512
  
  47b0544254154052dc7d3ce60da67bf2c2b8518a4c40094ef103adc3ec3c43bd929bd51293437b1217a191beabd8d23a6609e4525167d8e492860b7b6e2bc29a
- SSDEEP
  
  1536:W7ZhA7dAynMdyGdy4AnA4Q5+e8ccT+e8ccc:6e76ynpAhb8ccTb8ccc
Score

9^/10

discovery ransomware
- Renames multiple (3207) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware