Analysis
-
max time kernel
91s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
-
submitted
29/10/2022, 20:38
General
-
Target
a028ba884a6fa266b54c59762f57e7b580a43d6da50ae2d79b2a319c85b0b069.exe
-
Size
389KB
-
MD5
59191d1890923e1205a3a54df6b55370
-
SHA1
e406d80aa067e25060d8dae5b8d9976def3bceb4
-
SHA256
a028ba884a6fa266b54c59762f57e7b580a43d6da50ae2d79b2a319c85b0b069
-
SHA512
1c6b385e21e36a3cfacaf7666e1c4771e2e382bd889a1fa169182e2378477ab6e5e1d3d5d65c74271dcc3d8cb1ad6a2ab33377729da7fedc4a89076f11ed36f8
-
SSDEEP
12288:B+DDk0KkcBTP8SxHEC9EC9wDXzLDte7dNF9Ze+tBQu:BcbW4ck819MLsZZe+tBQu
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
Processes
-
C:\Users\Admin\AppData\Local\Temp\a028ba884a6fa266b54c59762f57e7b580a43d6da50ae2d79b2a319c85b0b069.exe"C:\Users\Admin\AppData\Local\Temp\a028ba884a6fa266b54c59762f57e7b580a43d6da50ae2d79b2a319c85b0b069.exe"1⤵