Analysis
-
max time kernel
143s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
-
submitted
04/10/2022, 06:26
General
-
Target
6aba0eef8440e33f13ad485f3805e26c6bfe57a66103bf81b3d06e84ce85f6ec.exe
-
Size
1.1MB
-
MD5
57e3c11d3430973274af25f5836cce06
-
SHA1
b521cb0ce77b8b0813ce39d4b25f587f072fdb5b
-
SHA256
6aba0eef8440e33f13ad485f3805e26c6bfe57a66103bf81b3d06e84ce85f6ec
-
SHA512
1536eb0e5074805d111d3f76d20ea1adb879997dcbcbdc2a8f87fe0cb1f8717e95128be3f7904681d6f4f8ef0f50361f77c02184c78a59a4a5d81a7f6e24eb4e
-
SSDEEP
24576:VpT4UlrVBzkM4niIwYGK1c/GiEhlMKFqNJN1SlRUMdYieiHF1MVIXaBPjLx/rs:VxrVJlLGcDEhl4N0nUMdtBHFyV6cLJrs
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\6aba0eef8440e33f13ad485f3805e26c6bfe57a66103bf81b3d06e84ce85f6ec.exe"C:\Users\Admin\AppData\Local\Temp\6aba0eef8440e33f13ad485f3805e26c6bfe57a66103bf81b3d06e84ce85f6ec.exe"1⤵