bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc | Triage

Submit
Reports

Overview

overview

3

Static

static

bc3ca9ba44...bc.exe

windows7-x64

3

bc3ca9ba44...bc.exe

windows10-2004-x64

3

Analysis

max time kernel
150s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20220812-en
resource tags

arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system
submitted
19/10/2022, 15:30

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc.exe

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc.exe
Size

294KB
MD5

9086513cfe10c401f65cfc55e00257b0
SHA1

0cd7fec2086a86385faffbef4e4edfc9697c2fe9
SHA256

bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc
SHA512

35358b1d8feb555329f197df08d8c92e004748e4e61b5f30fbea1472220051544b2754f697703e4c526237359f8e973b2bacdf6fb862d2b5a0bc4562d18281ac
SSDEEP

6144:Mb4fAS2iM2j0S/jWAZpnGUOJrB6V97XwRkwkUT5By7nts9scKfZ:HAS23JqnGUY1U7U9BGsuR

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc.exe
"C:\Users\Admin\AppData\Local\Temp\bc3ca9ba44fabb3ad470f8a4c92d5c684dd4d09d079817b8ad6ca13a3d1bccbc.exe"
1⤵
PID:2628

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2628-132-0x0000000000400000-0x000000000045E000-memory.dmp

Filesize
376KB

Download
memory/2628-133-0x0000000000400000-0x000000000045E000-memory.dmp

Filesize
376KB

Download

© 2018-2025

Terms | Privacy