Analysis
-
max time kernel
115s -
max time network
142s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
19/09/2022, 05:50
General
-
Target
8efaa4a0df6026e09985ba38c1c78e90bbf90d4abb441196b66ad3fbb4e35b13.exe
-
Size
1.1MB
-
MD5
739f6545c7e867ac51b2401070c0cf73
-
SHA1
2ab17127a6e950422e7473e970a6d5bc03760e54
-
SHA256
8efaa4a0df6026e09985ba38c1c78e90bbf90d4abb441196b66ad3fbb4e35b13
-
SHA512
074daaea1468f3b2c21b17425eab497ba1fd938b23d834c274a2d73753f15602f035aea0ada3bfdf3483792be89d42f92248cb6c1721cc43505a4176faeb6dcb
-
SSDEEP
24576:nT4Ule7HzaErOcavPhN/lnZtYobaKN6JwOBmkdpAxrLZIPb59o:fe7WEyVvPfmK+vkkvyLZIPc
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\8efaa4a0df6026e09985ba38c1c78e90bbf90d4abb441196b66ad3fbb4e35b13.exe"C:\Users\Admin\AppData\Local\Temp\8efaa4a0df6026e09985ba38c1c78e90bbf90d4abb441196b66ad3fbb4e35b13.exe"1⤵