a708ba35e8adee140b0513d8780b5bdf51533d377def749db3dec0805066e43e | Triage

Sharing

General

Target

a708ba35e8adee140b0513d8780b5bdf51533d377def749db3dec0805066e43e
Size

268KB
Sample

240409-a65fasce3s
MD5

77bbad57e45a24519f9ef21fe85c70da
SHA1

6759a44d864270d47982fa38719ba7683110ec65
SHA256

a708ba35e8adee140b0513d8780b5bdf51533d377def749db3dec0805066e43e
SHA512

c63b81635570eb8c0d89a8ed5dbeb7f847de6142e2458fab922cfaccbc228f139346927c0341a8cbffc059f59ec63bd24644b865472f9463e5e6919757a02104
SSDEEP

3072:vxv/y9LJ3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBW:pamlKgzelZNQSBQGH/CSpWqT

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  a708ba35e8adee140b0513d8780b5bdf51533d377def749db3dec0805066e43e
- Size
  
  268KB
- MD5
  
  77bbad57e45a24519f9ef21fe85c70da
- SHA1
  
  6759a44d864270d47982fa38719ba7683110ec65
- SHA256
  
  a708ba35e8adee140b0513d8780b5bdf51533d377def749db3dec0805066e43e
- SHA512
  
  c63b81635570eb8c0d89a8ed5dbeb7f847de6142e2458fab922cfaccbc228f139346927c0341a8cbffc059f59ec63bd24644b865472f9463e5e6919757a02104
- SSDEEP
  
  3072:vxv/y9LJ3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBW:pamlKgzelZNQSBQGH/CSpWqT
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2