egregor | 30947eb0e32891e8399806e6ecd41e1c3fc89d3db23b9ced6301a2d78aa275a0 | Triage

Sharing

General

Target

30947eb0e32891e8399806e6ecd41e1c3fc89d3db23b9ced6301a2d78aa275a0.zip
Size

382KB
Sample

250325-t7q4vayyb1
MD5

f8429a0168cc2b47b22460a255a92523
SHA1

77561ae173004fd3f7f8e004cd96dbe64b08758e
SHA256

30947eb0e32891e8399806e6ecd41e1c3fc89d3db23b9ced6301a2d78aa275a0
SHA512

eea34fd8ac7f5663cf7cc6af2f45c3cfa648c5dcd2d0b5988e9f6d2939b78660b4b7514049e7a8160373cd981c92486d4e4913faa0c9c6aec6ddab8a14ca375b
SSDEEP

6144:DitLAMxQ2jkUD/kGNUVDR+oO2cP+X0XvaggfeibmD/SgQBhWqZ1PxmRhy8fC7b/Y:Di1J62Qy6IoO2cGE/a7aD/gVZ1Pao8KQ

Score

10^/10

egregor discovery ransomware

Malware Config

Targets

- Target
  
  3b13b6f1d7cd14dc4a097a12e2e505c0a4cff495262261e2bfc991df238b9b04.dll
- Size
  
  781KB
- MD5
  
  56a6ffe6a02941028cc8235204eef31d
- SHA1
  
  5d30c56e46d627a0ac97097faa0eed6346b5d104
- SHA256
  
  3b13b6f1d7cd14dc4a097a12e2e505c0a4cff495262261e2bfc991df238b9b04
- SHA512
  
  83ba076efd48bbe7d90479a05f16ebccbee4e8574a18f2e215b598d1bd51b0f05329e4b5a247099859c77e79c019ac6cf3dad63159ddd3c284280e41ebebe8d5
- SSDEEP
  
  12288:eTouwVL81LNdljx5t6nPGebJeTzVA7lOnVhNU:codKjx5i7dOH
Score

10^/10

egregor discovery ransomware
- Egregor Ransomware
  Variant of the Sekhmet ransomware first seen in September 2020.
  ransomware egregor
- Egregor family
  egregor
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

egregordiscoveryransomware

behavioral2

egregordiscoveryransomware