Analysis
-
max time kernel
142s -
max time network
168s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
-
submitted
29-10-2022 15:07
General
-
Target
950061583fc389ceb59ead48324b5026cb8775c5151c6f1d31097312e253f95c.exe
-
Size
149KB
-
MD5
68463170d11029f2774a5d382314f8eb
-
SHA1
ff66b8bc8563f19e6043fd80d1e29dc2b7c2f070
-
SHA256
950061583fc389ceb59ead48324b5026cb8775c5151c6f1d31097312e253f95c
-
SHA512
4151a4459f0dd496e6e2304395ceaa6277642ba7462dd9632f4a8f2b5d23e9bd50be943be8a20ddc48b6968a2d3c73fb6b559431aa73754f19b8eaa9ceb4086a
-
SSDEEP
3072:jdszWOITsEL50jl7yIRdxVwqc2TcweciCwo8ujkU463if6ZdSZBP:2zZZJRdxVwqc2Tcwec7bkn6q63SDP
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\950061583fc389ceb59ead48324b5026cb8775c5151c6f1d31097312e253f95c.exe"C:\Users\Admin\AppData\Local\Temp\950061583fc389ceb59ead48324b5026cb8775c5151c6f1d31097312e253f95c.exe"1⤵