Analysis
-
max time kernel
137s -
max time network
183s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
20-10-2022 00:05
General
-
Target
575f185ef1f3acc11b61257c2510e5abbb2645145d0161b0e97b2dc6b0059d3c.exe
-
Size
75KB
-
MD5
91ce279d6372df5ff8152180b84a933e
-
SHA1
4eb7abe54da179c58a171c4cb04b7a8bef878e15
-
SHA256
575f185ef1f3acc11b61257c2510e5abbb2645145d0161b0e97b2dc6b0059d3c
-
SHA512
de0f0702b37d8ffd16a2db46565ab8ce59c39e504179e595c9bdc6bd78b0fdbbc9544a41be3c42b7939fc7673686de4cd40749b6dbf4d02bf7c1c91b064fe713
-
SSDEEP
1536:fQpQ5EP0ijnRTXJNh4Romu/TIYiideCzypzltmHxwAazx5tzLJqy:fQIURTXJr45JYii3zypzeRwACtJ
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\575f185ef1f3acc11b61257c2510e5abbb2645145d0161b0e97b2dc6b0059d3c.exe"C:\Users\Admin\AppData\Local\Temp\575f185ef1f3acc11b61257c2510e5abbb2645145d0161b0e97b2dc6b0059d3c.exe"1⤵