d3d75a38c3398dc1012c359235a8113c48ab3b5fecd5b182f6ec89928bcf5177 | Triage

Sharing

General

Target

cwel.bat
Size

1KB
Sample

240628-jedmya1aqm
MD5

fe933f6785704efd4916840328020f5e
SHA1

c40fc93ad55ed5e51a91d30897fc7b5f8c3b62c4
SHA256

d3d75a38c3398dc1012c359235a8113c48ab3b5fecd5b182f6ec89928bcf5177
SHA512

55b84a46f36666b002d333ef8bd722c7e0e8628aeb235e952e51b9e63ce5a959acb17ca65ce67513810f5545898775bf556dc109e408af2dc9bc4750e78e7feb

Score

7^/10

ransomware

Malware Config

Targets

- Target
  
  cwel.bat
- Size
  
  1KB
- MD5
  
  fe933f6785704efd4916840328020f5e
- SHA1
  
  c40fc93ad55ed5e51a91d30897fc7b5f8c3b62c4
- SHA256
  
  d3d75a38c3398dc1012c359235a8113c48ab3b5fecd5b182f6ec89928bcf5177
- SHA512
  
  55b84a46f36666b002d333ef8bd722c7e0e8628aeb235e952e51b9e63ce5a959acb17ca65ce67513810f5545898775bf556dc109e408af2dc9bc4750e78e7feb
Score

7^/10

ransomware
- Drops startup file
- Sets desktop wallpaper using registry
  ransomware
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1