Analysis
-
max time kernel
144s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
-
submitted
19/09/2022, 14:14
General
-
Target
31f03907d31a27421a3578e9a353a94c11f566a9fc04d7224d08e40ade0d35e6.exe
-
Size
254KB
-
MD5
eb3703f359047b7374aeb7db1506cd6c
-
SHA1
61b9e31c2a8e4e58352959462608bb2ccad2b1f0
-
SHA256
31f03907d31a27421a3578e9a353a94c11f566a9fc04d7224d08e40ade0d35e6
-
SHA512
a6223dc1029544742469a5d4f877324a3597fe239f420646d77e899f33959920741b89be6bbe111b92c9977d36592ae6a1aede678627aa7be4a9184827202aae
-
SSDEEP
6144:0ME1nmg1tDbJ5621YNA+Acm0GQJLwlqcyuq6/UUo:9gnJVboGYuq+6
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\31f03907d31a27421a3578e9a353a94c11f566a9fc04d7224d08e40ade0d35e6.exe"C:\Users\Admin\AppData\Local\Temp\31f03907d31a27421a3578e9a353a94c11f566a9fc04d7224d08e40ade0d35e6.exe"1⤵