Analysis
-
max time kernel
39s -
max time network
55s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
-
submitted
03-10-2022 20:55
General
-
Target
ba7749523d592d4adb6aa0e190403e81b145fc96b94b566d316c93fda6236792.exe
-
Size
366KB
-
MD5
533405ad52adda9359efd1b271823590
-
SHA1
7d044ee4f5149207deb5fb26eb698f9b55bca561
-
SHA256
ba7749523d592d4adb6aa0e190403e81b145fc96b94b566d316c93fda6236792
-
SHA512
a6bb8c9044e2773aaa05838924925db61ed9effe21eeeb00e5f34f95f5e826b145f61de7e479099c803ad8d9f6dc4ae64e1359b7ac5d9609c64fb4e73320ac6d
-
SSDEEP
6144:Uz8zrBIzfxwevA2zqaqITbtxz73yPv0aFaf7btbXKZ2JZkas:PrBIzfqR67z7Ctykf
Malware Config
Signatures
-
Drops startup file 1 IoCs
-
Loads dropped DLL 1 IoCs
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\ba7749523d592d4adb6aa0e190403e81b145fc96b94b566d316c93fda6236792.exe"C:\Users\Admin\AppData\Local\Temp\ba7749523d592d4adb6aa0e190403e81b145fc96b94b566d316c93fda6236792.exe"1⤵
- Drops startup file
- Loads dropped DLL
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
366KB
MD5533405ad52adda9359efd1b271823590
SHA17d044ee4f5149207deb5fb26eb698f9b55bca561
SHA256ba7749523d592d4adb6aa0e190403e81b145fc96b94b566d316c93fda6236792
SHA512a6bb8c9044e2773aaa05838924925db61ed9effe21eeeb00e5f34f95f5e826b145f61de7e479099c803ad8d9f6dc4ae64e1359b7ac5d9609c64fb4e73320ac6d
-
Filesize
8KB
-
Filesize
176KB