Analysis
-
max time kernel
169s -
max time network
192s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
14-10-2022 09:25
General
-
Target
0965e87f9c0763f1055bdf3df80f6ca3c1d43d601c38b50f164f9e5fcb4316f1.exe
-
Size
238KB
-
MD5
5456f9fed6f6f3c77b85f9f001170610
-
SHA1
33405da50a66a22d82cf334f11853286efb87ca3
-
SHA256
0965e87f9c0763f1055bdf3df80f6ca3c1d43d601c38b50f164f9e5fcb4316f1
-
SHA512
5247925f7eb533a028c479ec4cc56eb66ccc022826684eb2476718fd11a5c0f08b7a32bf25ad85c58dbfb74618f4f91c45aab0e8b211117dc435982fdb67ee40
-
SSDEEP
6144:fPpKCt7cP0s5uNPQRzqGxo6R6/exuCk2s4ALSz6YI:r1ccquBFOH2exxk2s4ALA8
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\0965e87f9c0763f1055bdf3df80f6ca3c1d43d601c38b50f164f9e5fcb4316f1.exe"C:\Users\Admin\AppData\Local\Temp\0965e87f9c0763f1055bdf3df80f6ca3c1d43d601c38b50f164f9e5fcb4316f1.exe"1⤵