Analysis
-
max time kernel
144s -
max time network
158s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
12-10-2022 14:11
General
-
Target
9b05caa4e91bf21a9fa9ed8ecd2df1484264d43363d2df99952b9fbb8bd1ce62.exe
-
Size
760KB
-
MD5
7a15f8b093b25171311c420b0e863320
-
SHA1
b9978061d5d17e4e251706f0228e05788ce6e806
-
SHA256
9b05caa4e91bf21a9fa9ed8ecd2df1484264d43363d2df99952b9fbb8bd1ce62
-
SHA512
2f116af14c5fe8f547614fc39e668b30e05e49437b3afec33c66e2b5fe4b716353981cab771f16cacc6052847d07bdece1cb1aca956d15f38abf3f852667b9ae
-
SSDEEP
12288:a2QhHqnj+RB4XpdAHa/ZTBiF5GvXmIGPChxvV7QIlGuLw1JRe+UxWB:a2QhHGqQZ6atBiXepGPqFVzGugYo
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\9b05caa4e91bf21a9fa9ed8ecd2df1484264d43363d2df99952b9fbb8bd1ce62.exe"C:\Users\Admin\AppData\Local\Temp\9b05caa4e91bf21a9fa9ed8ecd2df1484264d43363d2df99952b9fbb8bd1ce62.exe"1⤵