Overview

overview

10

Static

static

7d189af5f0...46.exe

windows7-x64

10

7d189af5f0...46.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    3s
  • max time network
    9s
  • platform
    windows7_x64
  • resource
    win7-20220812-en
  • resource tags

    arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system
  • submitted
    23-10-2022 04:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7d189af5f05f4b2eaa219018b7d6a5efadc8bbb15a7afd2a586ee01b74847a46.exe

  • Size

    132KB

  • MD5

    070dddf9d7c0afae4a8c5419e910d4e9

  • SHA1

    c5382329524a6f84ac08990634d311f2e1e90279

  • SHA256

    7d189af5f05f4b2eaa219018b7d6a5efadc8bbb15a7afd2a586ee01b74847a46

  • SHA512

    310d695cfacdd2a6a822d4e427b7eae3b24dec466c13e138dc4d2e3e66c7463bafc4ce428c4f9ef2f9eeb4da2df4e3399c6c617ee344ffda56604ba5bd6928f6

  • SSDEEP

    3072:sLR/yqT96WaGrZce7gMfmgsbgLpufLJ7KdLVRfkXr:s9/hTsHGrFOgRdGLKVRfkb

Score
10/10
lockyransomware

Malware Config

Signatures

  • Locky

    Ransomware strain released in 2016, with advanced features like anti-analysis.

    ransomwarelocky

Processes

  • C:\Users\Admin\AppData\Local\Temp\7d189af5f05f4b2eaa219018b7d6a5efadc8bbb15a7afd2a586ee01b74847a46.exe
    "C:\Users\Admin\AppData\Local\Temp\7d189af5f05f4b2eaa219018b7d6a5efadc8bbb15a7afd2a586ee01b74847a46.exe"
    1⤵
      PID:1248

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1248-54-0x0000000075351000-0x0000000075353000-memory.dmp
      Filesize

      8KB

      Download
    • memory/1248-55-0x0000000000400000-0x000000000043E000-memory.dmp
      Filesize

      248KB

      Download
    • memory/1248-58-0x0000000000220000-0x0000000000224000-memory.dmp
      Filesize

      16KB

      Download