Overview

overview

10

Static

static

Rasomware2.0.exe

windows7_x64

10

Rasomware2.0.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Rasomware2.0.exe?raw=true

  • Size

    824KB

  • Sample

    220601-tr58tsdgem

  • MD5

    7d17a868abac9de81fe79087eee31471

  • SHA1

    2d3f58ea051db43964243b8aefb7279e45e7bda9

  • SHA256

    1d871d84ee02630558411e47c81ef2aa8bef8f6cd8daaf594f133f545f772c26

  • SHA512

    85ec6c3cf0908b306712041fc9d971d27349641245c29f126e01443dcc6ccd78530c789b15d345938c194009c890b42f7c95bc65deae1ef7372e5744651f9540

Score
10/10
evasionpersistenceransomware

Malware Config

Targets

    • Target

      Rasomware2.0.exe?raw=true

    • Size

      824KB

    • MD5

      7d17a868abac9de81fe79087eee31471

    • SHA1

      2d3f58ea051db43964243b8aefb7279e45e7bda9

    • SHA256

      1d871d84ee02630558411e47c81ef2aa8bef8f6cd8daaf594f133f545f772c26

    • SHA512

      85ec6c3cf0908b306712041fc9d971d27349641245c29f126e01443dcc6ccd78530c789b15d345938c194009c890b42f7c95bc65deae1ef7372e5744651f9540

    Score
    10/10
    evasionpersistenceransomware

    • Modifies WinLogon for persistence

      persistence

    • Disables Task Manager via registry modification

      evasion

    • Drops desktop.ini file(s)

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.