maze | f9dfdce85f83d7a416ecc162a9f68643357b1fd10ea29e6b2cd934b967192a74 | Triage

Sharing

General

Target

f9dfdce85f83d7a416ecc162a9f68643357b1fd10ea29e6b2cd934b967192a74.bin.bin
Size

351KB
Sample

210822-c9j2zbrz7a
MD5

345d140139d2d11713b06f1cd9a5669e
SHA1

ca3c843964caa54471c136e8fc36bcb3534c1432
SHA256

f9dfdce85f83d7a416ecc162a9f68643357b1fd10ea29e6b2cd934b967192a74
SHA512

4e2f2424bb47bbb93972b37fa2657d51f43a5061c7318637cda56bb48ea5fde4277f6a06a4b9e7855a20adbd1eb7ba2444686550fed624428986dc30ea9245c9

Score

10^/10

maze ransomware spyware stealer trojan

Malware Config

Targets

- Target
  
  f9dfdce85f83d7a416ecc162a9f68643357b1fd10ea29e6b2cd934b967192a74.bin.bin
- Size
  
  351KB
- MD5
  
  345d140139d2d11713b06f1cd9a5669e
- SHA1
  
  ca3c843964caa54471c136e8fc36bcb3534c1432
- SHA256
  
  f9dfdce85f83d7a416ecc162a9f68643357b1fd10ea29e6b2cd934b967192a74
- SHA512
  
  4e2f2424bb47bbb93972b37fa2657d51f43a5061c7318637cda56bb48ea5fde4277f6a06a4b9e7855a20adbd1eb7ba2444686550fed624428986dc30ea9245c9
Score

10^/10

maze ransomware spyware stealer trojan
- Maze
  Ransomware family also known as ChaCha.
  trojan ransomware maze
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops startup file
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Defacement

Inhibit System Recovery

Tasks

static1

behavioral1

mazeransomwarespywarestealertrojan

behavioral2

mazeransomwarespywarestealertrojan