1f839f85fa1decdf33ff5d3a1466ba7e63391e7c6e3f4892763700e8dd0175df | Triage

Sharing

General

Target

tweaker.bat
Size

796B
Sample

240524-wfwalaec42
MD5

2d22637355f12bedb3413aeee78c0b95
SHA1

3f14d1cf76a04efcd2d7874344e8e700ec2999a7
SHA256

1f839f85fa1decdf33ff5d3a1466ba7e63391e7c6e3f4892763700e8dd0175df
SHA512

d7a6b5f302f9e93f7d7c0cbff43e2b05db2eab9b2fd626034ce2a6a349df55c9c2b711d68661688507b6b2bfafc96a5bfd15caa6cf41b4aa54cf386565106bf5

Score

9^/10

evasion ransomware

Malware Config

Targets

- Target
  
  tweaker.bat
- Size
  
  796B
- MD5
  
  2d22637355f12bedb3413aeee78c0b95
- SHA1
  
  3f14d1cf76a04efcd2d7874344e8e700ec2999a7
- SHA256
  
  1f839f85fa1decdf33ff5d3a1466ba7e63391e7c6e3f4892763700e8dd0175df
- SHA512
  
  d7a6b5f302f9e93f7d7c0cbff43e2b05db2eab9b2fd626034ce2a6a349df55c9c2b711d68661688507b6b2bfafc96a5bfd15caa6cf41b4aa54cf386565106bf5
Score

9^/10

evasion ransomware
- Clears Windows event logs
  evasion ransomware
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

evasionransomware