dd7a2af84c650fe8de1cc03e855e2c98691685a30ab7b605e80c62cb3446a2c7 | Triage

Sharing

General

Target

NEAS.062c82c3e6022d77845d92ed1da16830_JC.exe
Size

409KB
Sample

231014-mgrjcscc9s
MD5

062c82c3e6022d77845d92ed1da16830
SHA1

a1bf5c05e43bce9173606e582b0249051ffcd7e1
SHA256

dd7a2af84c650fe8de1cc03e855e2c98691685a30ab7b605e80c62cb3446a2c7
SHA512

cbae30f9816f69202be1a1c69ae5caa5fc12d15449c99e7c798ea7b281bdc00f446d37777f6bba65d985a04b86b06ac1ff75954ebc79a3a5aea97148ad31a752
SSDEEP

3072:rcWOqbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtPga:IWIlKgzelZNQSBQGH/CSpWqTKmQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  NEAS.062c82c3e6022d77845d92ed1da16830_JC.exe
- Size
  
  409KB
- MD5
  
  062c82c3e6022d77845d92ed1da16830
- SHA1
  
  a1bf5c05e43bce9173606e582b0249051ffcd7e1
- SHA256
  
  dd7a2af84c650fe8de1cc03e855e2c98691685a30ab7b605e80c62cb3446a2c7
- SHA512
  
  cbae30f9816f69202be1a1c69ae5caa5fc12d15449c99e7c798ea7b281bdc00f446d37777f6bba65d985a04b86b06ac1ff75954ebc79a3a5aea97148ad31a752
- SSDEEP
  
  3072:rcWOqbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtPga:IWIlKgzelZNQSBQGH/CSpWqTKmQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2