Analysis
-
max time kernel
92s -
max time network
157s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
28/10/2022, 23:15
General
-
Target
e2ccac2b036abb206899f10445588f70fb8767ffaf0f579fc7059df2c572e0e7.exe
-
Size
382KB
-
MD5
0f70fd7de3595532c7b7ee3f4bfb4fd0
-
SHA1
c2ead323236caa6ca9735c31902c34bccb5c8ed9
-
SHA256
e2ccac2b036abb206899f10445588f70fb8767ffaf0f579fc7059df2c572e0e7
-
SHA512
2a385de4df5033809729ee3d80dee35a06a2b9fe37a2eaea0f2ce4bb4f8644b9f92514f1f2e8cca7d343172e26232f6c407fe5e5175349e834403f1bf5d84b82
-
SSDEEP
6144:iGH8HdnkpZwtaIuCCcxbFonb6KgKYplg18sSwhMUDL6kjDcPwvHZsn+2ovrxt2Gv:BcdnkpytaZCCcx0QpSbukjDAwvM+FvDj
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\e2ccac2b036abb206899f10445588f70fb8767ffaf0f579fc7059df2c572e0e7.exe"C:\Users\Admin\AppData\Local\Temp\e2ccac2b036abb206899f10445588f70fb8767ffaf0f579fc7059df2c572e0e7.exe"1⤵