da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

Target

Size

1MB

Sample

200121-8rfx5g85jj

Score

6 ^/10

MD5

d2bbda5cc6e78a6a9baa39e2cdda4923

SHA1

8e830f5c5d144cbe7554c91a846a20aca6322c60

SHA256

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

SHA512

76f75e95c0aaac7e30cd658581f6f6ad8dbeb9a1a751317ef8afd1d7d64911e53d9c081dbfc1c73dba367279e039e96178ed99b5d01ef6a806a7b6c135c3c222

Target

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

MD5

d2bbda5cc6e78a6a9baa39e2cdda4923

Filesize

1MB

Score

6 ^/10

SHA1

8e830f5c5d144cbe7554c91a846a20aca6322c60

SHA256

da989874b3610efe92f46f67d6a83b5f81f2ac1c90fb1133adc27b0b29c96b94

SHA512

76f75e95c0aaac7e30cd658581f6f6ad8dbeb9a1a751317ef8afd1d7d64911e53d9c081dbfc1c73dba367279e039e96178ed99b5d01ef6a806a7b6c135c3c222

Signatures

Drops file in System32 directory
Modifies system certificate store

Tags

evasion spyware trojan

TTPs

Install Root Certificate Modify Registry
Sets desktop wallpaper using registry

Tags

ransomware

TTPs

Defacement Modify Registry
Drops autorun.inf file

Tags

spreading trojan

TTPs

Replication Through Removable Media
Checks whether UAC is enabled

Tags

evasion trojan

TTPs

System Information Discovery

Related Tasks

task1 task2

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

System Information Discovery

Execution

Exfiltration

Impact

Defacement

Initial Access

Lateral Movement

Replication Through Removable Media

Persistence

Privilege Escalation

task1

evasion spyware trojan ransomware spreading

6^/10

task2

ransomware spreading trojan evasion

6^/10

Tags

Signatures

Drops file in System32 directory

Modifies system certificate store

Tags

TTPs

Sets desktop wallpaper using registry

Tags

TTPs

Drops autorun.inf file

Tags

TTPs

Checks whether UAC is enabled

Tags

TTPs

Related Tasks

task1

task2