Overview

overview

10

Static

static

10

9db958bc5b...26.exe

windows7-x64

9

9db958bc5b...26.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9db958bc5b4a21340ceeeb8c36873aa6bd02a460e688de56ccbba945384b1926.zip

  • Size

    1.4MB

  • Sample

    230518-nbf14she5s

  • MD5

    3b12b99f1c3067c1aa46491a758ba450

  • SHA1

    dbb4ce6980a05d5e66914f36454b1f0940d6ef60

  • SHA256

    52f03ab2a7ea80be35cb6cd4a41a450a154e4b6dca6f5244fb3b0ad157a01e1d

  • SHA512

    a73b01a66f9f42653f1552e5ab78f790536389f016a50acf9596b56d3d5c0c31ba2b35624bc5c0c8b7b4004cba5502664bf327aa457c7e41f4793046ad955387

  • SSDEEP

    24576:mct6C5XzfV0PLUbF0VhayfY5K3aaOW9CTi82mnX2KQcxpp0Yaxrq:3cCBzujUhGQYExM9NmnXlQcxtaxW

Score
10/10
royalransomware

Malware Config

Targets

    • Target

      9db958bc5b4a21340ceeeb8c36873aa6bd02a460e688de56ccbba945384b1926

    • Size

      2.9MB

    • MD5

      afd5d656a42a746e95926ef07933f054

    • SHA1

      04028a0a1d44f81709040c31af026785209d4343

    • SHA256

      9db958bc5b4a21340ceeeb8c36873aa6bd02a460e688de56ccbba945384b1926

    • SHA512

      9397ebac71847597852cc8ca9045dc4c66802d4afb612d7ebd30a5f4dd5b50c6714d2c76e5c4e4e408d12deef4f33b51b4a393e89ec23d984a159682f6e90999

    • SSDEEP

      49152:cDVwASOLGtlqrRIU6i9+vazNqQlJZP1BMU2thA8mNtNCiJlrRUFcJ7HIPcLzk+5c:wm+GaNqqJJ12vlZol8cJ7rcl

    Score
    9/10
    ransomware

    • Deletes shadow copies

      Ransomware often targets backup files to inhibit system recovery.

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

2
T1107

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Inhibit System Recovery

2
T1490

Tasks