f9508e81f1ac31569646fde9e864e25212457ca62ac768e23fbb95c290950e99

Submit
Reports

Overview

overview

Static

static

a0cc60b4fa...0f.exe

windows7-x64

a0cc60b4fa...0f.exe

windows10-2004-x64

a69cf4fa61...7f.exe

windows7-x64

a69cf4fa61...7f.exe

windows10-2004-x64

a6dbbf3d86...75.exe

windows7-x64

a6dbbf3d86...75.exe

windows10-2004-x64

a783bb9edd...09.exe

windows7-x64

a783bb9edd...09.exe

windows10-2004-x64

ac89e5c3ba...5a.exe

windows7-x64

ac89e5c3ba...5a.exe

windows10-2004-x64

b6d4c3b56c...24.exe

windows7-x64

b6d4c3b56c...24.exe

windows10-2004-x64

b91eb833de...81.exe

windows7-x64

b91eb833de...81.exe

windows10-2004-x64

b959b003c1...74.exe

windows7-x64

b959b003c1...74.exe

windows10-2004-x64

ba8824a7c7...63.exe

windows7-x64

ba8824a7c7...63.exe

windows10-2004-x64

c0f1ebcca8...4a.exe

windows7-x64

c0f1ebcca8...4a.exe

windows10-2004-x64

c3117be60e...ea.exe

windows7-x64

c3117be60e...ea.exe

windows10-2004-x64

c492754e6c...ef.exe

windows7-x64

c492754e6c...ef.exe

windows10-2004-x64

c9cc4d95ca...cd.exe

windows7-x64

c9cc4d95ca...cd.exe

windows10-2004-x64

ca4a22ce76...20.exe

windows7-x64

ca4a22ce76...20.exe

windows10-2004-x64

cb949ebe87...26.exe

windows7-x64

cb949ebe87...26.exe

windows10-2004-x64

cbc0718c3c...99.exe

windows7-x64

cbc0718c3c...99.exe

windows10-2004-x64

Analysis

max time kernel
145s
max time network
160s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
05-09-2022 15:53

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

a0cc60b4fa8f29f5410424687c8f3e60b7f7b63c632fb506d2a42be45264de0f.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

a0cc60b4fa8f29f5410424687c8f3e60b7f7b63c632fb506d2a42be45264de0f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

a69cf4fa61217f8230e032089a8f56f7ebf31e4cd35124e6ad104db86851f17f.exe

Resource

win7-20220812-en

blister loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

a69cf4fa61217f8230e032089a8f56f7ebf31e4cd35124e6ad104db86851f17f.exe

Resource

win10v2004-20220901-en

blister loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

a6dbbf3d861bcc796d59c88856aa1537ad9929bb48026eade107b1ab504dbf75.exe

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

a6dbbf3d861bcc796d59c88856aa1537ad9929bb48026eade107b1ab504dbf75.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

a783bb9eddc40876a80504615a40e65649b910eeb0b5041ca7e8635d39b1d209.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral8

Sample

a783bb9eddc40876a80504615a40e65649b910eeb0b5041ca7e8635d39b1d209.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral9

Sample

ac89e5c3ba69bb41f4bb4bb7f7af39514b5a211ec6b641d45408777b30c75c5a.exe

Resource

win7-20220812-en

blister loader

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral10

Sample

ac89e5c3ba69bb41f4bb4bb7f7af39514b5a211ec6b641d45408777b30c75c5a.exe

Resource

win10v2004-20220901-en

blister loader

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral11

Sample

b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral13

Sample

b91eb833de386ea3d73d2954f0dce9fe38e4bf96594620af6c0935b9ee0d7e81.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral14

Sample

b91eb833de386ea3d73d2954f0dce9fe38e4bf96594620af6c0935b9ee0d7e81.exe

Resource

win10v2004-20220901-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral15

Sample

b959b003c1e558ff0ccf1d0f96509b155d6f86eb20caa97b470f3422494d8d74.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral16

Sample

b959b003c1e558ff0ccf1d0f96509b155d6f86eb20caa97b470f3422494d8d74.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral17

Sample

ba8824a7c7b7db0f89d566719b6a2c0893158b37b5ac45dd138acbdf6d7e9d63.exe

Resource

win7-20220901-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral18

Sample

ba8824a7c7b7db0f89d566719b6a2c0893158b37b5ac45dd138acbdf6d7e9d63.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral19

Sample

c0f1ebcca8a8094853aa65210ddde80f6a9ffe7b3f2d75d5652b166722b3aa4a.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral20

Sample

c0f1ebcca8a8094853aa65210ddde80f6a9ffe7b3f2d75d5652b166722b3aa4a.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral21

Sample

c3117be60ef780dc86581052b5e3f72969bef6471c7218e35beec60d167eb4ea.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral22

Sample

c3117be60ef780dc86581052b5e3f72969bef6471c7218e35beec60d167eb4ea.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral23

Sample

c492754e6c21e22732ad1188c511745a3eea064696dc7f351d66e3c92bd63cef.exe

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

c492754e6c21e22732ad1188c511745a3eea064696dc7f351d66e3c92bd63cef.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral25

Sample

c9cc4d95ca1197328a743a41b09c2375d54ac97fcdde5e07bda660396710eccd.exe

Resource

win7-20220812-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral26

Sample

c9cc4d95ca1197328a743a41b09c2375d54ac97fcdde5e07bda660396710eccd.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral27

Sample

ca4a22ce761737a04ebdba0fd8063a81642d7d96fea052c8debe9acf7791df20.exe

Resource

win7-20220901-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral28

Sample

ca4a22ce761737a04ebdba0fd8063a81642d7d96fea052c8debe9acf7791df20.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral29

Sample

cb949ebe87c55c0ba6cf0525161e2e6670c1ae186ab83ce46047446e9753a926.exe

Resource

win7-20220901-en

blister loader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral30

Sample

cb949ebe87c55c0ba6cf0525161e2e6670c1ae186ab83ce46047446e9753a926.exe

Resource

win10v2004-20220812-en

blister loader

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral31

Sample

cbc0718c3c45ed4311aec5f83572b7b92d364ab4d16bc43582e781843bdef099.exe

Resource

win7-20220812-en

blister cobaltstrike 1580103824 backdoor loader trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral32

Sample

cbc0718c3c45ed4311aec5f83572b7b92d364ab4d16bc43582e781843bdef099.exe

Resource

win10v2004-20220812-en

blister cobaltstrike backdoor loader trojan

windows10-2004-x64

5 signatures

150 seconds

Report Analysis Logs

General

Target

b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024.exe
Size

1.2MB
MD5

78231d5e17cf43a5a92bfbe2bf65bef0
SHA1

7a3522989f8df7d17943f8547f59daa1482a3be1
SHA256

b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024
SHA512

38868c3e6c0ed57e0543391fb0168a19adeaf47fa5b962e7865af0c8a9c1bc22ca4a43e9ab6ec5b3e6d1995d1dd520ed73438bac75872b7b3570e1cd35385f83
SSDEEP

24576:jQ4ip8IriSd7C3DdYWHrM2y95o5kxI919BfQrXz7BOF:fIrriSyDLwFBxI9pf8noF

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024.exe
"C:\Users\Admin\AppData\Local\Temp\b6d4c3b56c0b12a12ff0e2baee3f46f4683f9e33a780c9631b61cf755eebc024.exe"
1⤵
PID:4932

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads