d6ba6b40217431d396a0e358660d5dd0686cc21bf302b32c0ceb14c322d74644 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d6ba6b40217431d396a0e358660d5dd0686cc21bf302b32c0ceb14c322d74644
Size

420KB
Sample

240320-bg25bach58
MD5

15a6b92e095e4a76f4e31982a6e02e74
SHA1

954a6ca66dba1db748df836532138dfc1ebeef71
SHA256

d6ba6b40217431d396a0e358660d5dd0686cc21bf302b32c0ceb14c322d74644
SHA512

dc14b0d041917bc95672f9a5ac7065df23124114e28766891cd23ef42c1ba82fc4ab2164cfadf20379c7b747e7b074765d1ce3bf404d72390541fbea2901cb3d
SSDEEP

3072:tmyvMnbtGXRvjxCb5NgXDY7uSK4aqTB3RtPgmQ+LgmQD:bzlKgzeYqTKmQ/mQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  d6ba6b40217431d396a0e358660d5dd0686cc21bf302b32c0ceb14c322d74644
- Size
  
  420KB
- MD5
  
  15a6b92e095e4a76f4e31982a6e02e74
- SHA1
  
  954a6ca66dba1db748df836532138dfc1ebeef71
- SHA256
  
  d6ba6b40217431d396a0e358660d5dd0686cc21bf302b32c0ceb14c322d74644
- SHA512
  
  dc14b0d041917bc95672f9a5ac7065df23124114e28766891cd23ef42c1ba82fc4ab2164cfadf20379c7b747e7b074765d1ce3bf404d72390541fbea2901cb3d
- SSDEEP
  
  3072:tmyvMnbtGXRvjxCb5NgXDY7uSK4aqTB3RtPgmQ+LgmQD:bzlKgzeYqTKmQ/mQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2