Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
02-05-2022 23:55
General
-
Target
9094516c6e0cea0e64b8a79c2f30c1408bebf705aaed7587e417445fbabd65b9.exe
-
Size
232KB
-
MD5
c6c11a98c55d75f11ed88c4df931fd39
-
SHA1
8180a64e5bb006b8485991aef1fd8cf7e105a3c6
-
SHA256
9094516c6e0cea0e64b8a79c2f30c1408bebf705aaed7587e417445fbabd65b9
-
SHA512
ce8a46d4e355e6a5b3e3d25de076fee1e5997e4dea3d16f729731999694039682a85ae3924713a69e435d3b39989cc5c222c62b4a4a4f4aa1ee516bd6ffaded4
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\9094516c6e0cea0e64b8a79c2f30c1408bebf705aaed7587e417445fbabd65b9.exe"C:\Users\Admin\AppData\Local\Temp\9094516c6e0cea0e64b8a79c2f30c1408bebf705aaed7587e417445fbabd65b9.exe"1⤵
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/5088-130-0x0000000004C40000-0x00000000051E4000-memory.dmpFilesize
5.6MB
-
memory/5088-131-0x0000000004AD0000-0x0000000004B62000-memory.dmpFilesize
584KB
-
memory/5088-132-0x0000000004BF0000-0x0000000004BFA000-memory.dmpFilesize
40KB