2c4c0d0ac4b7ee2acbc68ac15a02d8c60677a6a832e87b60da99c818963e7c67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.88f63163a455e4e5e09e06e467968320.exe
Size

301KB
Sample

231016-w36pvahd56
MD5

88f63163a455e4e5e09e06e467968320
SHA1

aa0e52bcb56a3019d2c64c54a6bb4b5f7cd28a12
SHA256

2c4c0d0ac4b7ee2acbc68ac15a02d8c60677a6a832e87b60da99c818963e7c67
SHA512

418107c8ab3954dbfb10dea26267ccbcb0e13549dfc5a718cd8c3b870dc23928cec51feba90c23bffa84fa47effcb6d2991ef2ba9dc0fabb432b25b2c5f3fcb8
SSDEEP

6144:kZSE8UGJwiYwUfWeR7oHYnOW111mFW+c:M3GFY/jWHYt1yW+

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  NEAS.88f63163a455e4e5e09e06e467968320.exe
- Size
  
  301KB
- MD5
  
  88f63163a455e4e5e09e06e467968320
- SHA1
  
  aa0e52bcb56a3019d2c64c54a6bb4b5f7cd28a12
- SHA256
  
  2c4c0d0ac4b7ee2acbc68ac15a02d8c60677a6a832e87b60da99c818963e7c67
- SHA512
  
  418107c8ab3954dbfb10dea26267ccbcb0e13549dfc5a718cd8c3b870dc23928cec51feba90c23bffa84fa47effcb6d2991ef2ba9dc0fabb432b25b2c5f3fcb8
- SSDEEP
  
  6144:kZSE8UGJwiYwUfWeR7oHYnOW111mFW+c:M3GFY/jWHYt1yW+
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2