9d69450ace17f043c2e35a7724ebc6613d10c5253795890cfd9c938509e50cda | Triage

Sharing

General

Target

b4a7ad2455b1a28d79c5bfd449cf936e_JC.exe
Size

370KB
Sample

231011-q8fsqada88
MD5

b4a7ad2455b1a28d79c5bfd449cf936e
SHA1

b15e7eb9b96e0679f46ff7731ef010e1e32a728e
SHA256

9d69450ace17f043c2e35a7724ebc6613d10c5253795890cfd9c938509e50cda
SHA512

66bbd69ac861ee37bb4c2b92c4dca0081683f6fb9ede7f2cacf2493d43ead625b0c7b5a58a08a0b93233d4b535ca00f19221b775734df460139c1f912b62bdfb
SSDEEP

3072:ymyvMnbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtPu:ozlKgzelZNQSBQGH/CSpWqTKmQ/mQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  b4a7ad2455b1a28d79c5bfd449cf936e_JC.exe
- Size
  
  370KB
- MD5
  
  b4a7ad2455b1a28d79c5bfd449cf936e
- SHA1
  
  b15e7eb9b96e0679f46ff7731ef010e1e32a728e
- SHA256
  
  9d69450ace17f043c2e35a7724ebc6613d10c5253795890cfd9c938509e50cda
- SHA512
  
  66bbd69ac861ee37bb4c2b92c4dca0081683f6fb9ede7f2cacf2493d43ead625b0c7b5a58a08a0b93233d4b535ca00f19221b775734df460139c1f912b62bdfb
- SSDEEP
  
  3072:ymyvMnbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtPu:ozlKgzelZNQSBQGH/CSpWqTKmQ/mQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2