royal | 9d279e5be9b5bf1654f9d611066bb5a8ea78caa1fd085d3036b59ada8456c26b | Triage

Sharing

General

Target

8624497239.zip
Size

1.1MB
Sample

221222-x9wnwsac7t
MD5

ed067c077863f3b717eb11fc9cf2a1e2
SHA1

51f625899277279a195d7ae3d9ad867073aeadd1
SHA256

9d279e5be9b5bf1654f9d611066bb5a8ea78caa1fd085d3036b59ada8456c26b
SHA512

3fe9cae0c3ee8db2f8ded8b9295ef3c9777eacba8bfde4c927003c4c19529e05c2398db47cf83929dc3b11eeddce33e19854ef9962e2bed72aba1ae8aeb99394
SSDEEP

24576:OSspRdCfPUemaW0+jHvoz77HMZ5MZgPOqd07uhie46BEWGpBHqbI:OpNCX/PwvozHHMZvhf46eWG6bI

Score

10^/10

royal ransomware

Malware Config

Targets

- Target
  
  4cf1ceb49fb9b5982c9a40a6fd6ce74c25caa94c6d7c7019fc88d1f2fa903c9c
- Size
  
  2.1MB
- MD5
  
  18768f6d2d4e20acf5af4f1323ff9b4f
- SHA1
  
  27e87d22211b66fc1f4c5970db0ab283e506bc22
- SHA256
  
  4cf1ceb49fb9b5982c9a40a6fd6ce74c25caa94c6d7c7019fc88d1f2fa903c9c
- SHA512
  
  07ef07d7188587f6b5aaf4c24fdf93f3f406ddcf68a72b372d39af2e0491bcfa4815672fb1c782fddf2e1fdca4a5f1b9a6c3d09b445629377cf19ccb116ae7ed
- SSDEEP
  
  24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQM:Bq9LmKKe36MmYJPAvIPtHzH3h4UC4qk
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2