trigona | be6dfedd91e1ebc81d58a61b05b0ef93322425b247636a0f7f5c3eeebbc52edd | Triage

Sharing

General

Target

be6dfedd91e1ebc81d58a61b05b0ef93322425b247636a0f7f5c3eeebbc52edd.exe
Size

483KB
Sample

250211-f59lhsxphp
MD5

b4af619cdc21b9947f7ae58cb73e9175
SHA1

f79d529a6704ed1b5e6e3b3af41bba2b2213f1c5
SHA256

be6dfedd91e1ebc81d58a61b05b0ef93322425b247636a0f7f5c3eeebbc52edd
SHA512

a111dc0672a609211e19d3d702defcd0eb28cfa3c035139d097adaf6edcabfb2dec72601da32c5abecf0eeb4e546d4e6bd9effce2d341b0ccfc06a1e1bfb7d5c
SSDEEP

6144:XZfaSk7FR/pdPYIEQu0JriuXDeEIBN+dx8QN7knC2tpwBQ1yPqqDLulG6hGsovZ3:JzIRxdDRe+8i2QN7kC2bqnuDGsovNr

Score

10^/10

trigona discovery ransomware

Malware Config

Targets

- Target
  
  be6dfedd91e1ebc81d58a61b05b0ef93322425b247636a0f7f5c3eeebbc52edd.exe
- Size
  
  483KB
- MD5
  
  b4af619cdc21b9947f7ae58cb73e9175
- SHA1
  
  f79d529a6704ed1b5e6e3b3af41bba2b2213f1c5
- SHA256
  
  be6dfedd91e1ebc81d58a61b05b0ef93322425b247636a0f7f5c3eeebbc52edd
- SHA512
  
  a111dc0672a609211e19d3d702defcd0eb28cfa3c035139d097adaf6edcabfb2dec72601da32c5abecf0eeb4e546d4e6bd9effce2d341b0ccfc06a1e1bfb7d5c
- SSDEEP
  
  6144:XZfaSk7FR/pdPYIEQu0JriuXDeEIBN+dx8QN7knC2tpwBQ1yPqqDLulG6hGsovZ3:JzIRxdDRe+8i2QN7kC2bqnuDGsovNr
Score

10^/10

trigona ransomware discovery
- Trigona
  A ransomware first seen at the beginning of the 2022.
  ransomware trigona
- Trigona family
  trigona
- Downloads MZ/PE file
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trigonaransomware

behavioral2

trigonadiscoveryransomware