d1a6b1fe69b726c7685c1cd9352cba4f26bc3e69bf45323db1b4d8f7f64d5332 | Triage

Sharing

General

Target

d1a6b1fe69b726c7685c1cd9352cba4f26bc3e69bf45323db1b4d8f7f64d5332
Size

274KB
Sample

240409-c8aptaff9s
MD5

5f1e7adc2c8a5f2b8a91e7d8ae54f7e1
SHA1

71a3a79a11255b097f7471275c5aed8e5f851d57
SHA256

d1a6b1fe69b726c7685c1cd9352cba4f26bc3e69bf45323db1b4d8f7f64d5332
SHA512

2ec1c818d3561636c0babf0e17a9a556b66569760b205947041a6a22ce5d38517f2e5e90049b6de8fab472f05945f27b5b0868248f12dd71da837dbcdedc3137
SSDEEP

3072:XI+/+g3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQH:4AClKgzelZNQSBQGH/CSpWqTKmQ

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  d1a6b1fe69b726c7685c1cd9352cba4f26bc3e69bf45323db1b4d8f7f64d5332
- Size
  
  274KB
- MD5
  
  5f1e7adc2c8a5f2b8a91e7d8ae54f7e1
- SHA1
  
  71a3a79a11255b097f7471275c5aed8e5f851d57
- SHA256
  
  d1a6b1fe69b726c7685c1cd9352cba4f26bc3e69bf45323db1b4d8f7f64d5332
- SHA512
  
  2ec1c818d3561636c0babf0e17a9a556b66569760b205947041a6a22ce5d38517f2e5e90049b6de8fab472f05945f27b5b0868248f12dd71da837dbcdedc3137
- SSDEEP
  
  3072:XI+/+g3tGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBrgmQH:4AClKgzelZNQSBQGH/CSpWqTKmQ
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2