9a5064e29abc176468c268065fb8ae84ba28747e182f4da94e46a01cb4abb232 | Triage

Sharing

General

Target

9a5064e29abc176468c268065fb8ae84ba28747e182f4da94e46a01cb4abb232
Size

312KB
Sample

240305-3a2zhsdc98
MD5

ddea1bef61f121e324ea949d91c4dd80
SHA1

6e8771bf3288c22d61be468b3b436cdeab2115d8
SHA256

9a5064e29abc176468c268065fb8ae84ba28747e182f4da94e46a01cb4abb232
SHA512

38d024e13bff40e5c6683f37fa9f078b04dd04b2e010bb3f553029faf138e744100ff9f2abe56a4a85e62dcc8d148dc2398119a6b5fce2305143b6d570dfba8d
SSDEEP

3072:8myvMnbtGXRvjxCb5NgXDY7uSK4aqTB3RtGGKbS0cfPp25wNF71Zq8gmQDK:GzlKgzeYqTTKJcfh2m71ZYmQW

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  9a5064e29abc176468c268065fb8ae84ba28747e182f4da94e46a01cb4abb232
- Size
  
  312KB
- MD5
  
  ddea1bef61f121e324ea949d91c4dd80
- SHA1
  
  6e8771bf3288c22d61be468b3b436cdeab2115d8
- SHA256
  
  9a5064e29abc176468c268065fb8ae84ba28747e182f4da94e46a01cb4abb232
- SHA512
  
  38d024e13bff40e5c6683f37fa9f078b04dd04b2e010bb3f553029faf138e744100ff9f2abe56a4a85e62dcc8d148dc2398119a6b5fce2305143b6d570dfba8d
- SSDEEP
  
  3072:8myvMnbtGXRvjxCb5NgXDY7uSK4aqTB3RtGGKbS0cfPp25wNF71Zq8gmQDK:GzlKgzeYqTTKJcfh2m71ZYmQW
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2