royal | 473f5b9623447416710e27490b22cae1e190d5ee32ad8a71f0b2bb810d576cfa | Triage

Sharing

General

Target

8770176320.zip
Size

1.1MB
Sample

230113-twwj7aad26
MD5

002906aed1cf4cfa92bdbf8d8043f09f
SHA1

3b62a54a2de9ed62ddecaf9373bed4f0617b24bc
SHA256

473f5b9623447416710e27490b22cae1e190d5ee32ad8a71f0b2bb810d576cfa
SHA512

f265ee26cf2b99166b7480a6aa2d056ddcbbf32314feb477009744eb9b45ce5327e2055db7e453c71ffdca4943d61f7e59ddf9c71e3f010523a2c00791a6cde2
SSDEEP

24576:2SspRdCfPUemaW0+jHvoz77HMZ5MZgPOqd07uhie46BEWGpBHqBoeNd:2pNCX/PwvozHHMZvhf46eWG6BoeNd

Score

10^/10

royal ransomware

Malware Config

Targets

- Target
  
  bd98bce23ffa16d8eddf972da13332ac236b9ffb0a1e431b0ee1dfcf95685841
- Size
  
  2.1MB
- MD5
  
  5d70661b656156d5a9f1545cd7ca18c2
- SHA1
  
  a44657c4e1e151b82215f882f68efb047defa93a
- SHA256
  
  bd98bce23ffa16d8eddf972da13332ac236b9ffb0a1e431b0ee1dfcf95685841
- SHA512
  
  ccb37ac8ec7f7e035ce501c4903bb2e459d9c448ad89097da8cc9d84a1f8184cc7af0497df713e8c98ba1111ce112eab2366cdd6cc2767ba1902ff8ceca75a8a
- SSDEEP
  
  24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQE:Bq9LmKKe36MmYJPAvIPtHzHXh4UC4qk
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2