2859f9ecf6e9f0df21054e159006f5f90cbfe30d8f8386176e93d7f69d36950a | Triage

Resubmissions

21-05-2024 16:21

240521-tt6mdabe77 7

21-05-2024 14:40

240521-r127eshd46 7

13-05-2024 20:33

240513-zbwx4scg2s 7

13-05-2024 17:38

240513-v715gsfe6t 7

Sharing

General

Target

Wallpaper_Assistant.exe
Size

12.8MB
Sample

240513-zbwx4scg2s
MD5

5d500654c0756821165bff7d31d17776
SHA1

92c3b0c83a5f7ad2f08d3e653ae513f944accc7c
SHA256

2859f9ecf6e9f0df21054e159006f5f90cbfe30d8f8386176e93d7f69d36950a
SHA512

641e36a86f61bd07305079d834f0ca223a74542a4e9197018300211dee2790cca026d642421295ccbdf95a944298fd4067793d55df9080c8b369337ff6115119
SSDEEP

393216:EY4q1+TtIiF0Y9Z8D8CcllhCW8SKWEAX9xK7:b4q1QtILa8DZcEW8SZzK7

Score

7^/10

pyinstaller ransomware

Malware Config

Targets

- Target
  
  Wallpaper_Assistant.exe
- Size
  
  12.8MB
- MD5
  
  5d500654c0756821165bff7d31d17776
- SHA1
  
  92c3b0c83a5f7ad2f08d3e653ae513f944accc7c
- SHA256
  
  2859f9ecf6e9f0df21054e159006f5f90cbfe30d8f8386176e93d7f69d36950a
- SHA512
  
  641e36a86f61bd07305079d834f0ca223a74542a4e9197018300211dee2790cca026d642421295ccbdf95a944298fd4067793d55df9080c8b369337ff6115119
- SSDEEP
  
  393216:EY4q1+TtIiF0Y9Z8D8CcllhCW8SKWEAX9xK7:b4q1QtILa8DZcEW8SZzK7
Score

7^/10

ransomware
- Loads dropped DLL
- Sets desktop wallpaper using registry
  ransomware
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Defacement

Resource Development

Reconnaissance

Tasks

static1

behavioral1