royal | 64246877499ad8da8a6b8ed84c9833ac9bd4ebd0cea28e2cb5a5e7a81137513d | Triage

Submit
Reports

Overview

overview

Static

static

4d7f6c6a05...99.exe

windows7-x64

9

4d7f6c6a05...99.exe

windows10-2004-x64

1

Sharing

General

Target

blksuit_111_exe_14100521684.zip
Size

1.1MB
Sample

240110-enrhyaddeq
MD5

579ec868f277205c37eec6a9af2f12e9
SHA1

2be7553e628b179bfcf8c507303ad59d064f244c
SHA256

64246877499ad8da8a6b8ed84c9833ac9bd4ebd0cea28e2cb5a5e7a81137513d
SHA512

2ef634c2e51245dc866a4ab3582d20b52ce1c827edc2339a8964c0ec21d601ef7fa31e38d6eee42bd574f507ef4240c15cbb286df94e91eca0971dc53c237ed1
SSDEEP

24576:hSspRdCfPUemaW0+jHvoz77HMZ5MZgPOqd07uhie46BEWGpBHqIvj+ynN5xZ:hpNCX/PwvozHHMZvhf46eWG68qynNXZ

Score

10^/10

royal ransomware

Static task

static1

ransomware royal

3 signatures

Behavioral task

behavioral1

Sample

4d7f6c6a051ecb1f8410243cd6941b339570165ebcfd3cc7db48d2a924874e99.exe

Resource

win7-20231215-en

windows7-x64

5 signatures

300 seconds

Behavioral task

behavioral2

Sample

4d7f6c6a051ecb1f8410243cd6941b339570165ebcfd3cc7db48d2a924874e99.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

300 seconds

Malware Config

Targets

- Target
  
  4d7f6c6a051ecb1f8410243cd6941b339570165ebcfd3cc7db48d2a924874e99
- Size
  
  2.1MB
- MD5
  
  4f813698141cb7144786cdc6f629a92b
- SHA1
  
  69feda9188dbebc2d2efec5926eb2af23ab78c5d
- SHA256
  
  4d7f6c6a051ecb1f8410243cd6941b339570165ebcfd3cc7db48d2a924874e99
- SHA512
  
  578e445bb595fd36c5095092abb1bc49b1878550469eeb5c9af4d8bd7994fa6540de453e34ccf2759832deee184060a3cb8928afff879bb31f8cd2261195bde0
- SSDEEP
  
  24576:R+KpPzIzkQoU6TPF8mkoSW12GR7qMA6v0Xwq8UcNV++e/i5dv9jOlRJYzyiMAIQR:Bq9LmKKe36MmYJPAvIPtHzH2h4UC4qk
Score

9^/10

ransomware
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Inhibit System Recovery

Tasks

static1

ransomwareroyal

behavioral1

behavioral2

© 2018-2024

Terms | Privacy