royal | c7ddb2dcb2f69e58707dc2126231038b9bdd2cef07e527b86da183033da2ab7d | Triage

Sharing

General

Target

beef7e428f26c583dd92962cbe886f2e4286825a1637b7a427ce84139ab6307a.zip
Size

1.1MB
Sample

230211-mbt3asfb3v
MD5

e29a4153e08b5b85b4a51f8a2cd2714e
SHA1

1a2056b4d141fcfc44f7132f31cba62d6f31d86d
SHA256

c7ddb2dcb2f69e58707dc2126231038b9bdd2cef07e527b86da183033da2ab7d
SHA512

09ba693f0b79166b8bcb080611a1938d2776a962c1d44079522bb1c280c211c0e69f6249e08ba0d7e8902f1a2e3e6789be0b430438bbb9d1a595626c96b767fc
SSDEEP

24576:DFkiYGwOJ9NOhLaPrfx+edE7bcVSse6ZHApG1bK1ZJzfWgl:DW3OJahLaPrp944Vle6BCXZJCgl

Score

10^/10

royal ransomware

Malware Config

Targets

- Target
  
  beef7e428f26c583dd92962cbe886f2e4286825a1637b7a427ce84139ab6307a.exe
- Size
  
  2.1MB
- MD5
  
  a0e99a1ba424a8f967b13021b42fce9f
- SHA1
  
  5e8e33d63d1bafa02084d018aab73a392fdce984
- SHA256
  
  beef7e428f26c583dd92962cbe886f2e4286825a1637b7a427ce84139ab6307a
- SHA512
  
  222b8e6c05402fa743646dc8039d71a6ef09eefcaeb6a18f877b5572cda73c31f718ffb1db5de02893cefaf77b25e597c953c15c55361f8d72e86790863f5dc2
- SSDEEP
  
  49152:AKdKdhwcjW7oPlIFP2a8cTPBn+zO1LH4Gh0LKUm:AKdQheoPOx8Mnb1
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2