3f930fb2c9675729ae323bcb5c21950f1b7721a7c67d62a14f92504180c49dea | Triage

Sharing

General

Target

6c28f363dde4a9698e641d938f8662c5_JC.exe
Size

1.5MB
Sample

231011-rca32ade66
MD5

6c28f363dde4a9698e641d938f8662c5
SHA1

de9c519a18e6974fa63bab8d99d4cc9d7ce3f6cf
SHA256

3f930fb2c9675729ae323bcb5c21950f1b7721a7c67d62a14f92504180c49dea
SHA512

05b340b698cde7288d0e8dc80ec417387abb5e42ccf982ff30a8a6ac6b7a147b4172a22b2200547469d45aa7cca034056b1f60f2a676097a1fe0e9c987c654df
SSDEEP

3072:QgV7qR3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB/w+zU:B1XlKgzelZNQSBQGH/CSpWqTVwbEvUS

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  6c28f363dde4a9698e641d938f8662c5_JC.exe
- Size
  
  1.5MB
- MD5
  
  6c28f363dde4a9698e641d938f8662c5
- SHA1
  
  de9c519a18e6974fa63bab8d99d4cc9d7ce3f6cf
- SHA256
  
  3f930fb2c9675729ae323bcb5c21950f1b7721a7c67d62a14f92504180c49dea
- SHA512
  
  05b340b698cde7288d0e8dc80ec417387abb5e42ccf982ff30a8a6ac6b7a147b4172a22b2200547469d45aa7cca034056b1f60f2a676097a1fe0e9c987c654df
- SSDEEP
  
  3072:QgV7qR3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB/w+zU:B1XlKgzelZNQSBQGH/CSpWqTVwbEvUS
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2