15ee5548d71ccdebb2f136ae93a15ce05c99f6cf1bcd569e78c5daf70847d871 | Triage

Sharing

General

Target

15ee5548d71ccdebb2f136ae93a15ce05c99f6cf1bcd569e78c5daf70847d871
Size

195KB
Sample

230327-h26fssec5z
MD5

a9e725bfe859bf431ef52679acb352d1
SHA1

d15072d2f1bb609382c2ade8b4af755d7f729afe
SHA256

15ee5548d71ccdebb2f136ae93a15ce05c99f6cf1bcd569e78c5daf70847d871
SHA512

e968887c33ad3e3da40635ac30f0762e6b7343478566d2b99beab26fde9df4d288b4c333d97066f888212b25724515eea9b3c2d28495001faba341e063549aac
SSDEEP

1536:BNDXNkufZxGqN+ex9kbyN+GFD1ImbpGArlDVZ:/dZUReAb9cX9hZ

Score

6^/10

persistence ransomware

Malware Config

Targets

- Target
  
  15ee5548d71ccdebb2f136ae93a15ce05c99f6cf1bcd569e78c5daf70847d871
- Size
  
  195KB
- MD5
  
  a9e725bfe859bf431ef52679acb352d1
- SHA1
  
  d15072d2f1bb609382c2ade8b4af755d7f729afe
- SHA256
  
  15ee5548d71ccdebb2f136ae93a15ce05c99f6cf1bcd569e78c5daf70847d871
- SHA512
  
  e968887c33ad3e3da40635ac30f0762e6b7343478566d2b99beab26fde9df4d288b4c333d97066f888212b25724515eea9b3c2d28495001faba341e063549aac
- SSDEEP
  
  1536:BNDXNkufZxGqN+ex9kbyN+GFD1ImbpGArlDVZ:/dZUReAb9cX9hZ
Score

6^/10

persistence ransomware
- Adds Run key to start application
  persistence
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Defacement

Tasks

static1

behavioral1

behavioral2

persistenceransomware