Analysis
-
max time kernel
44s -
max time network
49s -
platform
windows7_x64 -
resource
win7-20220901-en -
resource tags
arch:x64arch:x86image:win7-20220901-enlocale:en-usos:windows7-x64system -
submitted
26-10-2022 22:51
Static task
static1
Behavioral task
behavioral1
Sample
2a3ec58e04074b28e27a6ffdc7622ef86ed501f3e87b06d647caf02adf9c2151.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
2a3ec58e04074b28e27a6ffdc7622ef86ed501f3e87b06d647caf02adf9c2151.exe
Resource
win10v2004-20220812-en
General
-
Target
2a3ec58e04074b28e27a6ffdc7622ef86ed501f3e87b06d647caf02adf9c2151.exe
-
Size
15.3MB
-
MD5
cc4b10a64d04c5f2cc7c8eb6071ef66a
-
SHA1
28186a75e1f1daa56f73ec15304bbda27cef25b7
-
SHA256
2a3ec58e04074b28e27a6ffdc7622ef86ed501f3e87b06d647caf02adf9c2151
-
SHA512
e09c426fa6e7d525e4639766bdd55673436f5c4e9f8411a3408ef989919294b2455fe0b5a53d460e3365335f637163ac86e445b594c82e05d417530808942e6a
-
SSDEEP
393216:fttjmuPAQQ0fF18LZxTgRvIVeO09xHAMALtl:fthmF8fF1Y//eZxHAMA5l
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.