5597d8cfa61161ce13c7aa2b8036de0e68c0a24ea54680858ed956b68ae1e55e | Triage

Sharing

General

Target

NEAS.86002ddd2fff74271e5dd5dde0fbbab0.exe
Size

308KB
Sample

231013-y9531abg8z
MD5

86002ddd2fff74271e5dd5dde0fbbab0
SHA1

9e3b242e66022d993546f5f52d8850dbfe933e1a
SHA256

5597d8cfa61161ce13c7aa2b8036de0e68c0a24ea54680858ed956b68ae1e55e
SHA512

f9e8c5302c33257f98af420c3301f2d3c0b8bcd10356b8c64fc13b740d10703d4b9ae87eeb944492928503100803cba35a8ab415bc0ab3941091263f26876124
SSDEEP

6144:X7lKgzelZNQSBQGH/CSpWqTKmQWYTYn/:qfBQGH6SfrQWF

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  NEAS.86002ddd2fff74271e5dd5dde0fbbab0.exe
- Size
  
  308KB
- MD5
  
  86002ddd2fff74271e5dd5dde0fbbab0
- SHA1
  
  9e3b242e66022d993546f5f52d8850dbfe933e1a
- SHA256
  
  5597d8cfa61161ce13c7aa2b8036de0e68c0a24ea54680858ed956b68ae1e55e
- SHA512
  
  f9e8c5302c33257f98af420c3301f2d3c0b8bcd10356b8c64fc13b740d10703d4b9ae87eeb944492928503100803cba35a8ab415bc0ab3941091263f26876124
- SSDEEP
  
  6144:X7lKgzelZNQSBQGH/CSpWqTKmQWYTYn/:qfBQGH6SfrQWF
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2