royal | 42eec2b721e59640d7b88202b80d2d9a5c84bf34534396098a497a60ef5ebb97 | Triage

Sharing

General

Target

42eec2b721e59640d7b88202b80d2d9a5c84bf34534396098a497a60ef5ebb97
Size

2.1MB
Sample

230102-wjy6nafa69
MD5

99de8709cafc195cd12cfca75d35de4a
SHA1

aeaea352b9fe0236f281ce9456586ff39785fc74
SHA256

42eec2b721e59640d7b88202b80d2d9a5c84bf34534396098a497a60ef5ebb97
SHA512

f0f14d90aac8744a5a6e5fa99d576d90a7afb4fa3b471ad4f6785d945d930cca0d1a7af04c10900877e06e8c5d548c00e036f9cdd4dd3e02075458b658d53f08
SSDEEP

24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQg:Bq9LmKKe36MmYJPAvIPtHzH3h4UC4qk

Score

10^/10

royal ransomware

Malware Config

Targets

- Target
  
  42eec2b721e59640d7b88202b80d2d9a5c84bf34534396098a497a60ef5ebb97
- Size
  
  2.1MB
- MD5
  
  99de8709cafc195cd12cfca75d35de4a
- SHA1
  
  aeaea352b9fe0236f281ce9456586ff39785fc74
- SHA256
  
  42eec2b721e59640d7b88202b80d2d9a5c84bf34534396098a497a60ef5ebb97
- SHA512
  
  f0f14d90aac8744a5a6e5fa99d576d90a7afb4fa3b471ad4f6785d945d930cca0d1a7af04c10900877e06e8c5d548c00e036f9cdd4dd3e02075458b658d53f08
- SSDEEP
  
  24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQg:Bq9LmKKe36MmYJPAvIPtHzH3h4UC4qk
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2