royal | bc06587b96b2628480d47579bcc2519a9da2b55aa037a49af4cd03811c534f66 | Triage

Resubmissions

24-01-2023 13:44

230124-q11g6aca43 10

19-01-2023 04:27

230119-e29axafb46 10

Sharing

General

Target

bc06587b96b2628480d47579bcc2519a9da2b55aa037a49af4cd03811c534f66
Size

2.1MB
Sample

230124-q11g6aca43
MD5

c9b3c61c718240516a1d3b3875d8e991
SHA1

7c42c65934ffe2ae0d54a8828b04102997866fd4
SHA256

bc06587b96b2628480d47579bcc2519a9da2b55aa037a49af4cd03811c534f66
SHA512

5f9f69f1673ebbaf8d89c2747ce4201cd6f9eab9d21da139aa7dba8014720670b8a9dcf3ed030800df87f2452a5e59dbd46aa93559300cda537f891bafe1a793
SSDEEP

24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQ3:Bq9LmKKe36MmYJPAvIPtHzHIh4UC4qk

Score

10^/10

royal ransomware

Malware Config

Targets

- Target
  
  bc06587b96b2628480d47579bcc2519a9da2b55aa037a49af4cd03811c534f66
- Size
  
  2.1MB
- MD5
  
  c9b3c61c718240516a1d3b3875d8e991
- SHA1
  
  7c42c65934ffe2ae0d54a8828b04102997866fd4
- SHA256
  
  bc06587b96b2628480d47579bcc2519a9da2b55aa037a49af4cd03811c534f66
- SHA512
  
  5f9f69f1673ebbaf8d89c2747ce4201cd6f9eab9d21da139aa7dba8014720670b8a9dcf3ed030800df87f2452a5e59dbd46aa93559300cda537f891bafe1a793
- SSDEEP
  
  24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQ3:Bq9LmKKe36MmYJPAvIPtHzHIh4UC4qk
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2