069b31cb7f9054647b684da4fc5263fa690e32d75729ec6b5c808b0c532b9628 | Triage

Resubmissions

25-04-2024 18:34

240425-w7666sde75 9

Sharing

General

Target

EventCleaner.exe
Size

219KB
Sample

240425-w7666sde75
MD5

9353ed7c3ba8e2417ce2664ae7afac16
SHA1

05699a2a2792795db1d8f59273172ad80bdc8b06
SHA256

069b31cb7f9054647b684da4fc5263fa690e32d75729ec6b5c808b0c532b9628
SHA512

cb456c14c9ef6f49a92c989668bedb423e4020b761e627c4d67f90e855e9385d58cf0d1e024a0c728126cccdad2836615d23cd3011a8447470482ca939795262
SSDEEP

6144:Qtzsb5Uh28+V1WW69B9VjMdxPedN9ug0z9TB9SmDqzW:QtzE5elwLz9TrVeW

Score

9^/10

evasion ransomware

Malware Config

Targets

- Target
  
  EventCleaner.exe
- Size
  
  219KB
- MD5
  
  9353ed7c3ba8e2417ce2664ae7afac16
- SHA1
  
  05699a2a2792795db1d8f59273172ad80bdc8b06
- SHA256
  
  069b31cb7f9054647b684da4fc5263fa690e32d75729ec6b5c808b0c532b9628
- SHA512
  
  cb456c14c9ef6f49a92c989668bedb423e4020b761e627c4d67f90e855e9385d58cf0d1e024a0c728126cccdad2836615d23cd3011a8447470482ca939795262
- SSDEEP
  
  6144:Qtzsb5Uh28+V1WW69B9VjMdxPedN9ug0z9TB9SmDqzW:QtzE5elwLz9TrVeW
Score

9^/10

evasion ransomware
- Clears Windows event logs
  evasion ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

evasionransomware

behavioral2

evasionransomware