Analysis
-
max time kernel
35s -
max time network
49s -
platform
windows10_x64 -
resource
win10v20210408 -
submitted
13-05-2021 12:57
General
-
Target
36a53bf6479c6214aaa70d0e485d21ebc43f9b7fffcce3ee70ea6faa9c3bf82d.exe
-
Size
3.8MB
-
MD5
16810baac5e8cb6de0664077a4695f09
-
SHA1
cfac5248257efcb788c2fa7b1b94a116efd093f6
-
SHA256
36a53bf6479c6214aaa70d0e485d21ebc43f9b7fffcce3ee70ea6faa9c3bf82d
-
SHA512
50311248051a927dfbb69f73ad72e32ab0a926819c578165fa69a1e4320a0a85e171e11e7de268a2762a774273eddf2dfdae4899ebb7c8aa3873425542398bd8
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\36a53bf6479c6214aaa70d0e485d21ebc43f9b7fffcce3ee70ea6faa9c3bf82d.exe"C:\Users\Admin\AppData\Local\Temp\36a53bf6479c6214aaa70d0e485d21ebc43f9b7fffcce3ee70ea6faa9c3bf82d.exe"1⤵
Network
MITRE ATT&CK Matrix ATT&CK v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/852-114-0x0000000000800000-0x0000000000801000-memory.dmpFilesize
4KB