7e3293e07c706d9d02e34682537a566dd5aed3464fd186af6eefd7a73b8e8438 | Triage

Sharing

General

Target

aaefc048_by_Libranalysis
Size

3.8MB
Sample

210505-p5ajds2cca
MD5

aaefc0480def364bddc8b77efd1e9298
SHA1

985c945b1959453084e4f5e8eedf1cce03cd6b43
SHA256

7e3293e07c706d9d02e34682537a566dd5aed3464fd186af6eefd7a73b8e8438
SHA512

197d81e5a47e845048bbb7a358fa7842df85542dddba82266bd91448aebb196a32081537c47885311c3f30b00b2028ae812b2e1c878a040ac65e654fa8bcee88

Score

8^/10

persistence ransomware

Malware Config

Targets

- Target
  
  aaefc048_by_Libranalysis
- Size
  
  3.8MB
- MD5
  
  aaefc0480def364bddc8b77efd1e9298
- SHA1
  
  985c945b1959453084e4f5e8eedf1cce03cd6b43
- SHA256
  
  7e3293e07c706d9d02e34682537a566dd5aed3464fd186af6eefd7a73b8e8438
- SHA512
  
  197d81e5a47e845048bbb7a358fa7842df85542dddba82266bd91448aebb196a32081537c47885311c3f30b00b2028ae812b2e1c878a040ac65e654fa8bcee88
Score

8^/10

persistence ransomware
- Drops file in Drivers directory
- Adds Run key to start application
  persistence
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Defacement

Tasks

static1

behavioral1

behavioral2

persistenceransomware