General

  • Target

    Rasomware2.0.exe?raw=true

  • Size

    824KB

  • Sample

    220416-gmv6vacggp

  • MD5

    7d17a868abac9de81fe79087eee31471

  • SHA1

    2d3f58ea051db43964243b8aefb7279e45e7bda9

  • SHA256

    1d871d84ee02630558411e47c81ef2aa8bef8f6cd8daaf594f133f545f772c26

  • SHA512

    85ec6c3cf0908b306712041fc9d971d27349641245c29f126e01443dcc6ccd78530c789b15d345938c194009c890b42f7c95bc65deae1ef7372e5744651f9540

Malware Config

Targets

    • Target

      Rasomware2.0.exe?raw=true

    • Size

      824KB

    • MD5

      7d17a868abac9de81fe79087eee31471

    • SHA1

      2d3f58ea051db43964243b8aefb7279e45e7bda9

    • SHA256

      1d871d84ee02630558411e47c81ef2aa8bef8f6cd8daaf594f133f545f772c26

    • SHA512

      85ec6c3cf0908b306712041fc9d971d27349641245c29f126e01443dcc6ccd78530c789b15d345938c194009c890b42f7c95bc65deae1ef7372e5744651f9540

    • Modifies WinLogon for persistence

    • Disables Task Manager via registry modification

    • Drops desktop.ini file(s)

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v6

Tasks