General

  • Target

    e86843b97f01de8c91e49b03f4e127a84f6ba216497cee59aa7141c9b1fb8b9d

  • Size

    1.3MB

  • Sample

    250519-nv2rxsxnt9

  • MD5

    e4f4546c114b7f252fd8d04f73b4be47

  • SHA1

    c93f4a888b235928c3ad4ec77e0aaba2bb7e2d93

  • SHA256

    e86843b97f01de8c91e49b03f4e127a84f6ba216497cee59aa7141c9b1fb8b9d

  • SHA512

    616c140624657d1dce33a07227470d0b81f2473888dd8bf9d06e8df5019435531ad52f5478a9d4c9621841b4883321e6d2a6e1786d14b8978f4e1d8f870b1c80

  • SSDEEP

    3072:spWpVfo5+sa/rcCRyFNSH/kHZHGvAbFFcypg/qdeyhoKn/Ad0yJQs:NwcqSH/kHZHGvARndvMJl

Score
9/10

Malware Config

Targets

    • Target

      e86843b97f01de8c91e49b03f4e127a84f6ba216497cee59aa7141c9b1fb8b9d

    • Size

      1.3MB

    • MD5

      e4f4546c114b7f252fd8d04f73b4be47

    • SHA1

      c93f4a888b235928c3ad4ec77e0aaba2bb7e2d93

    • SHA256

      e86843b97f01de8c91e49b03f4e127a84f6ba216497cee59aa7141c9b1fb8b9d

    • SHA512

      616c140624657d1dce33a07227470d0b81f2473888dd8bf9d06e8df5019435531ad52f5478a9d4c9621841b4883321e6d2a6e1786d14b8978f4e1d8f870b1c80

    • SSDEEP

      3072:spWpVfo5+sa/rcCRyFNSH/kHZHGvAbFFcypg/qdeyhoKn/Ad0yJQs:NwcqSH/kHZHGvARndvMJl

    Score
    9/10
    • Renames multiple (1982) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Enterprise v16

Tasks