1db93ee81050da0ba413543f9fbc388499a466792f9a54ea6f1bbdb712ba9690 | Triage

Resubmissions

02-02-2023 15:10

230202-skgffsad87 10

30-01-2023 21:04

230130-zwmj6scg96 9

30-01-2023 19:19

230130-x1h2faca82 9

30-01-2023 19:18

230130-x1d3gsdf2v 9

30-01-2023 19:16

230130-xytp6ade61 9

30-01-2023 16:57

230130-vgczzabb95 9

Sharing

General

Target

1db93ee81050da0ba413543f9fbc388499a466792f9a54ea6f1bbdb712ba9690
Size

1.5MB
Sample

230130-x1h2faca82
MD5

fee7c379f3a555c5c821e872ec384a91
SHA1

7346e2e29faddd63ae5c610c07acab46b2b1b176
SHA256

1db93ee81050da0ba413543f9fbc388499a466792f9a54ea6f1bbdb712ba9690
SHA512

5daecbea4102f9b6c431afa1d6d5bb196594e7c9640d7a8b388669268d737d6e4277797504a86169b410ccf3cd6e92e0c55065d15a495a398bc27607567d1497
SSDEEP

24576:uSR66R9LwWCc9FFZUZVClJYkLbdf/nixuiO4DGDGW3628rKR1q+ClmJcpd++GMzr:uQvL9SWTVilyfMFo8D1b

Score

9^/10

ransomware

Malware Config

Targets

- Target
  
  1db93ee81050da0ba413543f9fbc388499a466792f9a54ea6f1bbdb712ba9690
- Size
  
  1.5MB
- MD5
  
  fee7c379f3a555c5c821e872ec384a91
- SHA1
  
  7346e2e29faddd63ae5c610c07acab46b2b1b176
- SHA256
  
  1db93ee81050da0ba413543f9fbc388499a466792f9a54ea6f1bbdb712ba9690
- SHA512
  
  5daecbea4102f9b6c431afa1d6d5bb196594e7c9640d7a8b388669268d737d6e4277797504a86169b410ccf3cd6e92e0c55065d15a495a398bc27607567d1497
- SSDEEP
  
  24576:uSR66R9LwWCc9FFZUZVClJYkLbdf/nixuiO4DGDGW3628rKR1q+ClmJcpd++GMzr:uQvL9SWTVilyfMFo8D1b
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Drops file in Drivers directory
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

behavioral2