Analysis
-
max time kernel
143s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
30-06-2022 23:23
Static task
static1
Behavioral task
behavioral1
Sample
531a83721a2d3ac3b6e5c46cc5d1157f1a16cee8f499ee4f713f1fdddea8a098.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
531a83721a2d3ac3b6e5c46cc5d1157f1a16cee8f499ee4f713f1fdddea8a098.exe
Resource
win10v2004-20220414-en
General
-
Target
531a83721a2d3ac3b6e5c46cc5d1157f1a16cee8f499ee4f713f1fdddea8a098.exe
-
Size
2.1MB
-
MD5
d59ee7e723f06f5a8b7c09f9a94ec374
-
SHA1
a25f9abd250c23113cf546f44528f2e7c30eb937
-
SHA256
531a83721a2d3ac3b6e5c46cc5d1157f1a16cee8f499ee4f713f1fdddea8a098
-
SHA512
e45f3b1cf906e4a67e2332988adcaf63dbc6e86e4c8986d13591819207e4319bb86b91ac4dd6a4525e6b04284edcf48f2fcb48ee4277b7238406e53f7e8b0cf7
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
Network
MITRE ATT&CK Matrix ATT&CK v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/2428-130-0x0000000000E80000-0x000000000109A000-memory.dmpFilesize
2.1MB