4e391f6288ee119660df3a6dcd7c817673ad59b31f5123c24477b4edc16b2508 | Triage

Submit
Reports

Overview

overview

8

Static

static

4

masterCONF...07.pdf

windows7_x64

1

masterCONF...07.pdf

windows10-2004_x64

1

masterCONF...07.exe

windows7_x64

8

masterCONF...07.exe

windows10-2004_x64

3

Analysis

max time kernel
959s
max time network
1237s
platform
windows10-2004_x64
resource
win10v2004-20220331-en
submitted
07-04-2022 11:34

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

masterCONFIGURATOR_v2.16.0.1407/Release_Note_masterCONFIGURATOR V2.16.0.1407.pdf

Resource

win7-20220331-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

masterCONFIGURATOR_v2.16.0.1407/Release_Note_masterCONFIGURATOR V2.16.0.1407.pdf

Resource

win10v2004-20220331-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

masterCONFIGURATOR_v2.16.0.1407/masterCONFIGURATOR_v2.16.0.1407.exe

Resource

win7-20220331-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

masterCONFIGURATOR_v2.16.0.1407/masterCONFIGURATOR_v2.16.0.1407.exe

Resource

win10v2004-20220331-en

windows10-2004_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

masterCONFIGURATOR_v2.16.0.1407/masterCONFIGURATOR_v2.16.0.1407.exe
Size

24.8MB
MD5

c68242aef3fcb3c3026558da41a81e9f
SHA1

a75f12a5478017257a2efc19255b083d665f3253
SHA256

2d0317b2fd26072119aa48686918f6314c730af415074633dc54e3df57db38aa
SHA512

f1a10f16b5845eb107a80e60cdc81d67e4f6f6440c66ac1b767b1a7eb1eef720e16be8b5a0e2ce634de52898caf0d3d3f0d285dc0b32f84b5cc38a68ab8749f0

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\masterCONFIGURATOR_v2.16.0.1407\masterCONFIGURATOR_v2.16.0.1407.exe
"C:\Users\Admin\AppData\Local\Temp\masterCONFIGURATOR_v2.16.0.1407\masterCONFIGURATOR_v2.16.0.1407.exe"
1⤵
PID:1724

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy