8ceab40620745d02447ce1b16c06a2563b50ea1c21a9605365739ac35dc53c5f | Triage

Sharing

General

Target

8ceab40620745d02447ce1b16c06a2563b50ea1c21a9605365739ac35dc53c5f
Size

262KB
Sample

240425-alap7aca9x
MD5

36b63a61a296f404cc598b4df497682e
SHA1

e9b4e70e9a583670765c36aaa8c8301d2f5ef295
SHA256

8ceab40620745d02447ce1b16c06a2563b50ea1c21a9605365739ac35dc53c5f
SHA512

7ebabcf2464a837c15521a2e2d4ef7655a2c71d3244cee976d01eaa16b830df173cecf62feafdba014e8c2237e02c3bf68a37283835899fa2f7ca7b60d1d53ac
SSDEEP

3072:vxv/y9LJ3tGXRvjxpkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBW:pamlTZNQSBQGH/CSpWqT

Score

6^/10

ransomware

Malware Config

Targets

- Target
  
  8ceab40620745d02447ce1b16c06a2563b50ea1c21a9605365739ac35dc53c5f
- Size
  
  262KB
- MD5
  
  36b63a61a296f404cc598b4df497682e
- SHA1
  
  e9b4e70e9a583670765c36aaa8c8301d2f5ef295
- SHA256
  
  8ceab40620745d02447ce1b16c06a2563b50ea1c21a9605365739ac35dc53c5f
- SHA512
  
  7ebabcf2464a837c15521a2e2d4ef7655a2c71d3244cee976d01eaa16b830df173cecf62feafdba014e8c2237e02c3bf68a37283835899fa2f7ca7b60d1d53ac
- SSDEEP
  
  3072:vxv/y9LJ3tGXRvjxpkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTBW:pamlTZNQSBQGH/CSpWqT
Score

6^/10

ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

behavioral2