Analysis
-
max time kernel
134s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
11-10-2022 05:21
General
-
Target
229779f68490d6aba725ce12c9e4753050e12c876a4e9b82e36df495fd781942.exe
-
Size
69KB
-
MD5
617fc3f04ef274c15af362a75afb4060
-
SHA1
aa49761db02714cddc6561ce9d26575cfc640f3a
-
SHA256
229779f68490d6aba725ce12c9e4753050e12c876a4e9b82e36df495fd781942
-
SHA512
fccae8cf9010cacad757438ede90297797b55e64e6b26796ed3dd89ab7fbb73643f09a0879128b1ddd9fea1180e62d7dd34f9453fa2174d9c0f4442efb85e22b
-
SSDEEP
1536:Kppal05FyuC/jL052PgFEla4ZJJcCcTqkSZZZ3guYBS6jibiR0O6w:Kp8l05FyX0mpa4ZJJc5JUDgS6Ob3O9
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\229779f68490d6aba725ce12c9e4753050e12c876a4e9b82e36df495fd781942.exe"C:\Users\Admin\AppData\Local\Temp\229779f68490d6aba725ce12c9e4753050e12c876a4e9b82e36df495fd781942.exe"1⤵