balaclava | 5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e | Triage

Submit
Reports

Overview

overview

Static

static

5d38ebafe0...8e.exe

windows7_x64

5d38ebafe0...8e.exe

windows10-2004_x64

Sharing

General

Target

5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e
Size

70KB
Sample

220205-snkmaacfb2
MD5

fa7bc80be251a4ab8f68be18149b50f1
SHA1

eeed35174700516ad6d500b7976d3ff86582579c
SHA256

5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e
SHA512

e1828e9e20cbb9fd06d2addf446b957ccce96739adb286bc57c68f0b23269ec1ac27b7e0e14d96718b405834d117e56db9cd1c8bcc739b8d650f58e5b74e4ee9

Score

10^/10

balaclava ransomware

Static task

static1

Behavioral task

behavioral1

Sample

5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e.exe

Resource

win7-en-20211208

balaclava ransomware

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e.exe

Resource

win10v2004-en-20220113

balaclava ransomware

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e
- Size
  
  70KB
- MD5
  
  fa7bc80be251a4ab8f68be18149b50f1
- SHA1
  
  eeed35174700516ad6d500b7976d3ff86582579c
- SHA256
  
  5d38ebafe05f6b9a2a94dd107bdda796b33563865ca6a1b9e562bcea63526a8e
- SHA512
  
  e1828e9e20cbb9fd06d2addf446b957ccce96739adb286bc57c68f0b23269ec1ac27b7e0e14d96718b405834d117e56db9cd1c8bcc739b8d650f58e5b74e4ee9
Score

10^/10

balaclava ransomware
- Balaclava Malware
  Balaclava malware is a ransomware program.
  ransomware balaclava
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Deletes itself
- Drops desktop.ini file(s)
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

balaclavaransomware

behavioral2

balaclavaransomware

© 2018-2024

Terms | Privacy