e37e42f828b0f438b0c47bbed9e6feccc4528cd94d551d12a6a4ba792c93cc0c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Trojan-Ransom.Win32.Blocker.bony-e37e42f828b0f438b0c47bbed9e6feccc4528cd94d551d12a6a4ba792c93cc0c
Size

68KB
Sample

221106-sm1xwaggc9
MD5

c1ac472fabcaa365008e45d96188a8b3
SHA1

cade092bb2d1bddc0ad2bb0c737956f4cf252ba3
SHA256

e37e42f828b0f438b0c47bbed9e6feccc4528cd94d551d12a6a4ba792c93cc0c
SHA512

69d08c58c72297cf75b91f6f253ee6d796347c41e8956c82c05e2a53800a97c89af56725afe25f19b813b1d52010a29dafbcadce1f4cdfd0e1637a85a7c08c6d
SSDEEP

768:NV33u4nvypr/Ldm8//be+FG6kYJMmw4wALhzVe8sOzqEp:N53ul/oY7wQuEp

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  Trojan-Ransom.Win32.Blocker.bony-e37e42f828b0f438b0c47bbed9e6feccc4528cd94d551d12a6a4ba792c93cc0c
- Size
  
  68KB
- MD5
  
  c1ac472fabcaa365008e45d96188a8b3
- SHA1
  
  cade092bb2d1bddc0ad2bb0c737956f4cf252ba3
- SHA256
  
  e37e42f828b0f438b0c47bbed9e6feccc4528cd94d551d12a6a4ba792c93cc0c
- SHA512
  
  69d08c58c72297cf75b91f6f253ee6d796347c41e8956c82c05e2a53800a97c89af56725afe25f19b813b1d52010a29dafbcadce1f4cdfd0e1637a85a7c08c6d
- SSDEEP
  
  768:NV33u4nvypr/Ldm8//be+FG6kYJMmw4wALhzVe8sOzqEp:N53ul/oY7wQuEp
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2