f43ec8e1cd597eced86c0e730e3aa390d224bece3a31e085e764a7a45b2c03f6 | Triage

Sharing

General

Target

f43ec8e1cd597eced86c0e730e3aa390d224bece3a31e085e764a7a45b2c03f6
Size

97KB
Sample

241012-ew8gesxdrq
MD5

49348faf0f5c0b69b0966758ec907a28
SHA1

2be3ad6a69595f42741a228074e03571d781a676
SHA256

f43ec8e1cd597eced86c0e730e3aa390d224bece3a31e085e764a7a45b2c03f6
SHA512

2e6fc79b04c0dfabef9374379aec0eafcb08e260e6f063377012dff3096707a5aa03576c6f3397bad9c2c5ae9b2cd4775b6c5c5316650f74bd737a3003f2789c
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBg:PqFF2Ie+eFzf

Score

9^/10

discovery ransomware

Malware Config

Targets

- Target
  
  f43ec8e1cd597eced86c0e730e3aa390d224bece3a31e085e764a7a45b2c03f6
- Size
  
  97KB
- MD5
  
  49348faf0f5c0b69b0966758ec907a28
- SHA1
  
  2be3ad6a69595f42741a228074e03571d781a676
- SHA256
  
  f43ec8e1cd597eced86c0e730e3aa390d224bece3a31e085e764a7a45b2c03f6
- SHA512
  
  2e6fc79b04c0dfabef9374379aec0eafcb08e260e6f063377012dff3096707a5aa03576c6f3397bad9c2c5ae9b2cd4775b6c5c5316650f74bd737a3003f2789c
- SSDEEP
  
  3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBg:PqFF2Ie+eFzf
Score

9^/10

discovery ransomware
- Renames multiple (3478) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware