930d88089bbeea8183926b3ed62df40900bf63bb0d922b444b1c1c83043e2ef9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.a8a479f4dbc72e45ef1e4814105ee2e0_JC.exe
Size

283KB
Sample

231103-dn1wyadb55
MD5

a8a479f4dbc72e45ef1e4814105ee2e0
SHA1

80dbac3bdfc8f7e35b5a9f693cb6c336bb46679a
SHA256

930d88089bbeea8183926b3ed62df40900bf63bb0d922b444b1c1c83043e2ef9
SHA512

ef4459cf79421f4277cd5039b08465b6958f4868793f94abaabf641eae217e0d77443531370b8cf38921aa93b7ccd6a0c2b141dd171bc5c95b7c4bd60c260b72
SSDEEP

3072:Lgv40I3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQO:kAclKgzelZNQSBQGH/CSpWqTKmQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  NEAS.a8a479f4dbc72e45ef1e4814105ee2e0_JC.exe
- Size
  
  283KB
- MD5
  
  a8a479f4dbc72e45ef1e4814105ee2e0
- SHA1
  
  80dbac3bdfc8f7e35b5a9f693cb6c336bb46679a
- SHA256
  
  930d88089bbeea8183926b3ed62df40900bf63bb0d922b444b1c1c83043e2ef9
- SHA512
  
  ef4459cf79421f4277cd5039b08465b6958f4868793f94abaabf641eae217e0d77443531370b8cf38921aa93b7ccd6a0c2b141dd171bc5c95b7c4bd60c260b72
- SSDEEP
  
  3072:Lgv40I3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQO:kAclKgzelZNQSBQGH/CSpWqTKmQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2