4e3463135c8ca8b3570dc818ab1ab056db9d08b43e37639ad0a0e53ae6d9f052 | Triage

Sharing

General

Target

4e3463135c8ca8b3570dc818ab1ab056db9d08b43e37639ad0a0e53ae6d9f052N
Size

1.5MB
Sample

240930-cxqxnataqp
MD5

99f6acc34882adbb61226daafb5abc70
SHA1

6325fbbb4584d3e45a74ac2eaec3615ffb916430
SHA256

4e3463135c8ca8b3570dc818ab1ab056db9d08b43e37639ad0a0e53ae6d9f052
SHA512

bdf5fe162d7ec550a5c5a58b5b452d53f78b90bcdaa388f152b870afec84c768148aab4d7214c3cb1da87db2890d12737bacd0c2550e24bd95b29769a702f054
SSDEEP

3072:8gV7qqpZXXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB891gv:V1rlKgzelZNQSBQGH/CSpWqTVmQ

Score

6^/10

discovery ransomware

Malware Config

Targets

- Target
  
  4e3463135c8ca8b3570dc818ab1ab056db9d08b43e37639ad0a0e53ae6d9f052N
- Size
  
  1.5MB
- MD5
  
  99f6acc34882adbb61226daafb5abc70
- SHA1
  
  6325fbbb4584d3e45a74ac2eaec3615ffb916430
- SHA256
  
  4e3463135c8ca8b3570dc818ab1ab056db9d08b43e37639ad0a0e53ae6d9f052
- SHA512
  
  bdf5fe162d7ec550a5c5a58b5b452d53f78b90bcdaa388f152b870afec84c768148aab4d7214c3cb1da87db2890d12737bacd0c2550e24bd95b29769a702f054
- SSDEEP
  
  3072:8gV7qqpZXXRvjxCb5NgXDY7uSlkJcUa7kYQTcqW2NdQQGH/UDhSCUc4aqTB891gv:V1rlKgzelZNQSBQGH/CSpWqTVmQ
Score

6^/10

discovery ransomware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Sets desktop wallpaper using registry
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Defacement

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware