maze | 6fcf946fb8c4c04a583587147b137ea8d7b3fc7f67e1b508b2653e0e21756ca5 | Triage

Sharing

General

Target

6fcf946fb8c4c04a583587147b137ea8d7b3fc7f67e1b508b2653e0e21756ca5
Size

346KB
Sample

200108-qgryr1sq56
MD5

f0068b1bbabfbf65deb2a1c4b6c29680
SHA1

40f7ba43bb2d37767b2f215318fa09289fa4d494
SHA256

6fcf946fb8c4c04a583587147b137ea8d7b3fc7f67e1b508b2653e0e21756ca5
SHA512

30f28d78193c2bb7b62b3dea6d82ae77335401740096c62574411815febaaf6ab53a1d451f9f772557191ee392177e89290cf06e3deb1ac02ce7de6fd72eca61

Score

10^/10

maze ransomware trojan

Malware Config

Targets

- Target
  
  6fcf946fb8c4c04a583587147b137ea8d7b3fc7f67e1b508b2653e0e21756ca5
- Size
  
  346KB
- MD5
  
  f0068b1bbabfbf65deb2a1c4b6c29680
- SHA1
  
  40f7ba43bb2d37767b2f215318fa09289fa4d494
- SHA256
  
  6fcf946fb8c4c04a583587147b137ea8d7b3fc7f67e1b508b2653e0e21756ca5
- SHA512
  
  30f28d78193c2bb7b62b3dea6d82ae77335401740096c62574411815febaaf6ab53a1d451f9f772557191ee392177e89290cf06e3deb1ac02ce7de6fd72eca61
Score

10^/10

trojan ransomware maze
- Maze
  Maze is a file encrypting virus and also a successor to ChaCha.
  trojan ransomware maze
- Deletes shadow copies
  ransomware
- Drops startup file
- Sets desktop wallpaper using registry
  ransomware
task1 task2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Inhibit System Recovery

Tasks

task1

trojanransomwaremaze

task2

trojanransomwaremaze