General

  • Target

    6e3594c7dfc2755dc6d8eb92915675d9231d3d4447314a95a68349fcc135b1af

  • Size

    232KB

  • Sample

    230327-j6bmnaee5y

  • MD5

    2865a86cc19a491f2da2e53ca139978b

  • SHA1

    e64052be1c1cdbe7ec666f13615c651b9f34fb79

  • SHA256

    6e3594c7dfc2755dc6d8eb92915675d9231d3d4447314a95a68349fcc135b1af

  • SHA512

    fc8a98e0393fa3a31c2cc005c2fc268636082791e28511a2654741f125f7f3da616b7d076a066a94ea212d7c34c89aa0e1d4cf365f0f489c68b1240c1e1a4af4

  • SSDEEP

    3072:axG22gaxH2zjzMgMgjkVgrbj3yKTQYm/lYA46hm5EL5oCKDOUw1Xq3N4y+WVhvpw:ax7axHUjUgjkVM3ySQb46hmcSOL15y

Score
8/10

Malware Config

Targets

    • Target

      6e3594c7dfc2755dc6d8eb92915675d9231d3d4447314a95a68349fcc135b1af

    • Size

      232KB

    • MD5

      2865a86cc19a491f2da2e53ca139978b

    • SHA1

      e64052be1c1cdbe7ec666f13615c651b9f34fb79

    • SHA256

      6e3594c7dfc2755dc6d8eb92915675d9231d3d4447314a95a68349fcc135b1af

    • SHA512

      fc8a98e0393fa3a31c2cc005c2fc268636082791e28511a2654741f125f7f3da616b7d076a066a94ea212d7c34c89aa0e1d4cf365f0f489c68b1240c1e1a4af4

    • SSDEEP

      3072:axG22gaxH2zjzMgMgjkVgrbj3yKTQYm/lYA46hm5EL5oCKDOUw1Xq3N4y+WVhvpw:ax7axHUjUgjkVM3ySQb46hmcSOL15y

    Score
    8/10
    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

    • Drops startup file

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v6

Tasks