b59a76e72ec1f0a920284ab666ef9d80a7aaf7c0fa776538141d515f47414136 | Triage

Sharing

General

Target

b59a76e72ec1f0a920284ab666ef9d80a7aaf7c0fa776538141d515f47414136
Size

1.5MB
Sample

240913-bts26swglq
MD5

7c95311a2eade6a1f2fb96bfd3fbc0ec
SHA1

ecea2a51ea1f926a8341016cbb4b5caf7ea28bbc
SHA256

b59a76e72ec1f0a920284ab666ef9d80a7aaf7c0fa776538141d515f47414136
SHA512

fe75c4aae402f7cb4b072c796e3e3022efda6a83b5a25c45f79ba63fa4e9ba72c6cda874e330183cd8542d863c85d98a5d97efe7493e15297ee71169ef9be84e
SSDEEP

3072:I7vHbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtpVgP:0clKgzelZNQSBQGH/CSpWqTCmQ

Score

6^/10

discovery ransomware

Malware Config

Targets

- Target
  
  b59a76e72ec1f0a920284ab666ef9d80a7aaf7c0fa776538141d515f47414136
- Size
  
  1.5MB
- MD5
  
  7c95311a2eade6a1f2fb96bfd3fbc0ec
- SHA1
  
  ecea2a51ea1f926a8341016cbb4b5caf7ea28bbc
- SHA256
  
  b59a76e72ec1f0a920284ab666ef9d80a7aaf7c0fa776538141d515f47414136
- SHA512
  
  fe75c4aae402f7cb4b072c796e3e3022efda6a83b5a25c45f79ba63fa4e9ba72c6cda874e330183cd8542d863c85d98a5d97efe7493e15297ee71169ef9be84e
- SSDEEP
  
  3072:I7vHbtGXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB3RtpVgP:0clKgzelZNQSBQGH/CSpWqTCmQ
Score

6^/10

discovery ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware