51defc81e82daf03d7af64717f5ce5304ffdffb924ac94991affaba07040cf9e | Triage

Sharing

General

Target

NEAS.003036fb7c5e4ed10e686b1e3a3dca50_JC.exe
Size

417KB
Sample

231014-lbc84sbe8y
MD5

003036fb7c5e4ed10e686b1e3a3dca50
SHA1

5c99607239ed58fcf9989f21339624de2d1da84a
SHA256

51defc81e82daf03d7af64717f5ce5304ffdffb924ac94991affaba07040cf9e
SHA512

04eb4fb84510052bc5b082b1db5947030fb596a25a203def0bfe448840eddfed5cd7f4884473d564be4232dbe061090d3969d334f55bd953b8596d9cb86c0856
SSDEEP

3072:0gV7qR3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQB:91XlKgzelZNQSBQGH/CSpWqTKmQpmQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  NEAS.003036fb7c5e4ed10e686b1e3a3dca50_JC.exe
- Size
  
  417KB
- MD5
  
  003036fb7c5e4ed10e686b1e3a3dca50
- SHA1
  
  5c99607239ed58fcf9989f21339624de2d1da84a
- SHA256
  
  51defc81e82daf03d7af64717f5ce5304ffdffb924ac94991affaba07040cf9e
- SHA512
  
  04eb4fb84510052bc5b082b1db5947030fb596a25a203def0bfe448840eddfed5cd7f4884473d564be4232dbe061090d3969d334f55bd953b8596d9cb86c0856
- SSDEEP
  
  3072:0gV7qR3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQB:91XlKgzelZNQSBQGH/CSpWqTKmQpmQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2