Analysis
-
max time kernel
91s -
max time network
174s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
-
submitted
20/10/2022, 20:52
General
-
Target
b0499d4a580bfd0446f468783c3f13a346622a9b30e9e135f311071f42b78118.exe
-
Size
220KB
-
MD5
962358356416f5c08f5f0d2afc0ef6e0
-
SHA1
c69c22415f1e50d11504e0a23471ebc93725431d
-
SHA256
b0499d4a580bfd0446f468783c3f13a346622a9b30e9e135f311071f42b78118
-
SHA512
2c56b234aee17d9f44e91f8b8480d9a44b2bcedb5a2befc3a54f1062340d592f998d6fd38be6e766275183b94a734515d4ac368008b28a6bd9c7710ea835a394
-
SSDEEP
6144:je34topjkqSpXaCH+47ER0Ee16kTccQgCmay0RPTmU:iovXZasvT6may4Pp
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\b0499d4a580bfd0446f468783c3f13a346622a9b30e9e135f311071f42b78118.exe"C:\Users\Admin\AppData\Local\Temp\b0499d4a580bfd0446f468783c3f13a346622a9b30e9e135f311071f42b78118.exe"1⤵